NOVEMBER  151*2004  •  VOLUME  21 ,  NUMBER  46 


THE  LEADER  IN  NETWORK  KNOWLEDGE  •  WWW.NWFUSION.COM 


SENES 


:v,  -  ,  •_  .  R 


■ 


.. 


The  right  storage  solution 
doesn't  just  give  you  better 
storage  control.  It  helps  you  make 
better  business  decisions. 

Storage  Management  Solutions 

The  first  step  in  making  better  business  decisions?  Deciding  to  be  in  control. 
CA's  Intelligent  Storage  Management  solutions  can  put  you  in  control  of  costs, 
resources  and  data  availability  like  never  before.  They  provide  you  with  a 
comprehensive  real-time  view  of  your  system's  storage  capabilities,  while  also 
providing  immediate  access  to  all  of  your  information.  As  a  result,  you  can 
manage  and  monitor  your  entire  storage  environment  with  ease  and  actually 
use  existing  data.  As  always,  it's  also  vendor-  and  device-neutral,  so  you  can 
maximize  your  current  storage  resources,  saving  time  and  money.  With  more 
automated  software  that  can  make  its  own  decisions  about  storage 
management,  you'll  have  the  information  you  need  to  make  better  business 
decisions.  To  find  out  more  or  to  get  a  white  paper,  go  to  ca.com/driver. 
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TEN  MOVES  AHEAD 


1.  LINUX  AND  SOLARIS™  OS 

APPLICATIONS  RUN  SIDE-BY-SIDE 


2.  CHOICE  OF  SYSTEMS - 
SPARC®,  AMD  OPTERON 


INTEL 


3,  RUNS  ON  OVER  250  SYSTEMS  FROM 
OTHER  MANUFACTURERS 


6.  GUARANTEED  COMPATIBILITY 
GUARANTEED  INDEMNITY 


7.  UP  TO  80%  SYSTEM  UTILIZATION 
(NO  MAINFRAME  REQUIRED) 


10.  SCALES  FROM  1-WAY  TO  100-WAY 


MOVE  AHEAD  TODAY  AT 
SUN.COM/SOLARIS10 


:•  XC4  SUN  MICROSYSTEMS.  INC.  ALL  RIGHTS  RESERVED  SUN.  SUN  MICROSYSTEMS.  THE  SUN  LOGO.  SOLARIS  AND  THE  NETWORK  IS  THE  COMPUTER  ARE  TRADEMARKS  OR  REGISTERED  TRADEMARKS  OF  SUN  MICROSYSTEMS.  INC.  IN  THE  UNITED  STATES  AND  OTHER  COUNTRIES.  ALL  SPARC  TRADEMARKS  ARE  USED  UNDER 
LICENSE  AND  ARE  TRADEMARKS  OR  REGISTERED  TRADEMARKS  OF  SPARC  INTERNATIONAL.  INC  IN  THE  UNITED  STATES  AND  OTHER  COUNTRIES. 

•  SEE  SOLARIS  APPLICATION  GUARANTEE  PROGRAM  FOR  MORE  DETAILS 
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8  Wireless  LAN  product  barrage  on  tap. 

8  Competition  heats  up  for  key  piece  of  ’Net  infrastructure. 
10  Hospital  project  targets  prescription  safety. 

12  3Com  the  latest  to  go  10G. 

12  Vendors  back  Web  security  testing. 

14  Microsoft  puts  anti-trust  issues  behind  it. 

14  VoIP  ruling  a  start,  not  an  end. 

16  Solaris  10  seen  as  major  step  forward  for  Sun. 

16  Desktop  search  engines  threaten  SSL  VPN  security. 

19  Vendors  uncrate  single  sign-on  software. 

19 ITIL  best  practices  pique  interest,  survey  shows. 

22  Sarvega  releases  new  XML  processing  blade. 
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Net  Infrastructure 

■  25  Mixed  net  brings  smarts  to 
factory  floor. 


Technology  Update 

■  41  App  routers  integrate  data 
in  a  snap. 
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■  25  Sesame  opens  up  wireless 
guest  access. 

Enterprise 

Computing 

■  31  Novell  bets  on  Linux  desktop 
suite. 

■  31  Dave  Kearns:  Novell 
swaps  an  old  suit  for  a  new  one. 

Application 

Services 

■  33  Hosted  software  tracks 
sales  info. 

■  33  Companies  target  IM, 
peer-to-peer  threats. 

■  36  Tool  fights  wireless,  wired 
worm  outbreaks. 

■  36  Scott  Bradner: 

Unwanted  vocalizations. 


■  41  Steve  Blass:  Ask  Dr. 

Internet. 

■  45  Mark  Gibbs:  Search  for 
Windows  key  turns  up  other  cool  tools. 

■  45  Keith  Shaw:  Cool  tools, 
gizmos  and  other  neat  stuff. 

Opinions 

■  48  On  technology:  FCC  right 
in  sheltering  VoIP  services. 

■  49  Edward  Horreil:  Tough 
selling  in  IT  these  days. 

■  49  Thomas  Nolle:  Does 
cheap  bandwidth  lead  to  offshoring? 

■  90  BackSpin:  Betting  on 
virtualization. 

■  90  'Net  Buzz:  A  few  more 
thoughts  about  the  election  and  the 
'Net. 

■  84  Career  classifieds. 


Network  World  Fusion  Radio:  Search  engines 

Can  Google  be  knocked  off  by  some  of  the  smaller  search  engines  on 
the  block  like  Clusty,  a9  or  AIITheWeb?  And  what  effect  will  Microsoft's 
impending  search  effort  have  on  the  market?  Bill  Tancer,  vice  president 
of  research  at  Hitwise,  an  online  competitive  intelligence  service  that 
tracks  the  habits  of  Web  surfers,  joins  us  to  discuss  the  overall  search 
market  and  where  it  is  heading. 

DocFinder:  4638 

IBM  seeks  to  blend  management  tools  and 
mobility 

See  how  Big  Blue  is  tackling  the  issue  of  mobile  applications  with  its 
Lotus  Workplace  initiative  —  Workplace  Client  Technology. 

DocFinder:  4639 

Cool  Tools 

Can't  get  enough  of  gadgets  and  the  latest  personal  productivity  tools? 
Check  out  the  Cool  Tools  Weblog,  updated  daily  with  the  latest  news  and 
products  by  Senior  Reviews  Editor  Keith  Shaw. 

DocFinder:  4640 

Case  studies 

Learn  best  practices  from  your  peers  to  make  the  most  of  technology, 
save  money  and  streamline  your  business. 

DocFinder:  4641 


Service 

Providers 

■  39  BT-Infonet  has 
history  to  overcome. 

■  39  Johna  Till 
Johnson:  Building  the 
next-generation  telecom 
team. 


SimpleTech's  new  NAS 
device  is  aimed  at 
SOHO  users.  Page  45. 


Breaking  News 

Go  online  for  breaking  news  every  day.  DocFinder:  6342 

Free  e-mail  newsletters 

Sign  up  for  any  of  more  than  40  newsletters  on  key  network  topics. 

DocFinder:  6343 

■  CONTACT  US  Network  World,  118Turnpike  Road,  Southborough, 
MA  01772;  Phone:  (508)  460-3333;  Fax:  (508)  490-6438; 

E-mail:  nwnews@nww.com;  STAFF:  See  the  masthead  on  page  16 
for  more  contact  information.  REPRINTS:  (717)  399-1900 

SUBSCRIPTIONS/CHANGE  OF  ADDRESS:  Phone:  (508)  490-6444; 
Fax:  (508)  490-6400;  E-mail:  nwcirc@nww.com; 

URL:  www.subscribenw.com 


|  Columnists 

Telework  Beat 

Traffic  jams  kill,  Part  2 

Net, Worker  Managing  Editor  Toni  Kistner  says  save  a  polar 
bear,  skip  the  commute.  DocFinder:  4642 

Nutter's  Help  Desk 

VPN  installation 

Help  Desk  columnist  Ron  Nutter  helps  a  reader  who  is  battling 
line-of-sight  problems  connecting  two  offices  and  needs 
back-up  help.  DocFinder:  4643 

Small-Business  Tech 

Low  dollar  or  high  service?  Part  2 

Columnist  James  Gaskin  offers  strategies  for  small 
businesses  selling  products  online.  DocFinder:  4644 

Home  Base 

Three  mistakes  that  drive  support  guys  nuts 
Columnist  Steve  Ulfelder  talks  to  a  IT  pro  who  shares  the 
three  biggest  mistakes  small-business  owners  make  with  their 

PCs.  DocFinder:  4645 

j  Seminars  and  Events 

The  2005  IT  Roadmap 
Future  Vision 

Are  you  tasked  with  managing  next-generation  security? 
The  new  data  center?  WANs  and  LANs?  Applications  man¬ 
agement?  IP  telephony?  Wireless?  Your  new  year  begins 
early  at  this  Welcome-to-2005  Tech  Tour  event.  Qualified 
professionals  attend  free. 

DocFinder:  4646 


What  is  DocFinder? 

We’ve  made  it  easy  to  access  articles  and 
resources  online.  Simply  enter  the  four-digit 
DocFinder  number  in  the  search  box  on  the 
home  page,  and  you’ll  jump  directly  to  the 
requested  information. 


The  new  Distributed  Wireless  Solution  from  SonicWALL-a  unique  answer  to  your  network's 
most  pressing  mobility  and  productivity  needs. 


Your  employees  want  to  work. ..everywhere.  You  know  wireless  is  the  answer,  but  what  about  those  nagging  security  concerns?  And  the  headaches 
associated  with  managing  separate  wired  and  wireless  infrastructures? 

Finally,  a  proven  network  security  firm  has  delivered  the  ultimate  wireless  LAN  platform.  Built  upon  its  award-winning  line  of  PRO  series  appliances,  the 
unique  Distributed  Wireless  Solution  from  SonicWALL®  integrates  secure  wireless  functionality  with  a  deep  packet  inspection  firewall,  IPSec  VPN,  content 
filtering,  intrusion  prevention,  gateway-enforced  anti-virus  protection  and  end  point  security.  Using  the  new  multi-radio,  centrally-managed  SonicPoint™ 
802.1 1  a/b/g  satellite  access  points,  you  can  enjoy  powerful  features  such  as  Wireless  Guest  Services  and  secure  wireless  roaming  throughout  your  facility. 
And  whether  you  add  two  or  1 00  SonicPoints,  it's  all  managed  securely  and  seamlessly  by  the  SonicWALL  security  appliance. 


Give  your  employees  the  heady  feeling  of  freedom.  With  SonicWALL's  ingenious  wireless  security  solutions,  you  can  unleash  your 
workforce  without  sacrificing  security. 

The  SonicWALL  Distributed  Wireless  Solution.  Wired  or  wireless,  it's  all  the  same.  Get  to  work. 

To  learn  more  about  SonicWALL's  Distributed  Wireless  Solution  and  set  your  workforce  free,  contact  one  of  the  resellers  below 
or  visit  www.sonicwall.com/home/reseller.asp  to  find  a  SonicWALL  reseller  near  you. 
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EN  POINTE 
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A  Minority  Business  Enterprise 

En  Pointe  Technologies 
800.594.5173  X7542 
www.enpointe.com 


WEST 
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it  lumen 

group,  inc. 

The  Itlumen  Group 
303.743.8700 
www.illumen.com 
CENTRAL 


The  Network 
Support  Company 


Network  Support 
877.744.2284 

www.network-support.com 
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■  TheGoodTheBad  tellgly 


<S>  Job  security.  Be  happy  if  you've  chosen  IT  security  as  a  career  path  and 
perhaps  consider  it  as  a  job  direction  if  you  haven’t.  That’s  the  upshot  from  a  new 
study  conducted  by  IDC  on  behalf  of  the  International  Information  Systems  Security 
Certification  Consortium  that  shows  the  number  of  cybersecurity  professionals  will 
grow  at  an  annual  compound  rate  of  nearly  14%  from  now  until  2008.  That  compares 
to  a  5%  to  7%  growth  in  IT  jobs  in  general  over  that  span. 

w  Bell  tolls  for  SBC  workers,  sbc  says  it  is  axing  10.000  of  its 

165,000  employees  by  year-end.  The  6%  reduction  in  workforce  results  from 
productivity  improvements  brought  about  by  new  technologies  and  lower  demand 
for  local  access,  according  to  the  carrier.  It  remains  to  be  seen  what  the  shrunken 
workforce  will  mean  for  customer  service  and  new  service  development,  y 


Paying  to  go  public.  The  Sarbanes-Oxley  Act  adds  $1.5  million  or 
more  to  the  cost  of  going  public  for  start-ups,  according  to  a  panel  of  venture 
capitalists  at  last  week's  Association  for  Corporate  Growth  conference  on  disruptive 
technologies.  That's  why  getting  bought  is  a  better  choice  than  going  public  for 
more  start-ups  today,  said  the  VCs,  speaking  at  the  Burlington,  Mass.,  event. 


Hello  and 
how  may 
I  help  you? 


Cisco  flags  IOS  vulnerability 

■  A  software  vulnerability  in  some  Cisco  routers  and  switches 
could  let  an  attacker  cause  the  devices  to  hang  up,  the  vendor 
warned  last  week.  Gear  running  IOS  Version  12.2S,  and  Dynamic 
Host  Configuration  Protocol  server  and  relay  functions,  can  be 
made  unavailable  if  an  attacker  overloads  the  device  with  spe¬ 
cially  crafted  DHCP  packets,  Cisco  says.  The  vendor  warns  that 
even  if  users  don’t  have  the  DHCP  service  or  DHCP  relay  service 
configured  on  an  affected  product,  the  device  still  might  be  vul¬ 
nerable.  The  problem  lies  with  a  glitch  in  how  the  software  han¬ 
dles  DHCP  packets.  If  an  attacker  sends  irregular  DHCP  packets 
meant  to  confuse  the  device,  the  packets  “will  remain  in  the 
queue  instead  of  being  dropped,”  a  Cisco  advisory  says.“If  a  num¬ 
ber  of  packets  are  sent  that  equal  the  size  of  the  input  queue,  no 
more  traffic  will  be  accepted  on  that  interface.”Cisco  is  offering  a 
free  software  fix. 
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Firefox  browser  makes  official  debut 

■  The  Mozilla  Foundation  has  released  Version  1.0  of  its  Firefox  browser,  an  open  source 
product  that  has  generated  lofty  expectations  that  it  will  offer  real  competition  to  Micro¬ 
soft’s  ubiquitous  Internet  Explorer.  A  preview  release  of  Firefox  available  since  last  month 
has  been  downloaded  more  than  8  million  times.  Firefox  1.0  is  available  in  12  languages 
for  Windows,  Mac  OS  X  and  Linux.The  product  can  be  obtained  through  www.mozilla.org 
as  a  free  download  or  in  CD  format  with  a  user’s  manual  for  $15.  Firefox  1.0  features  an 
integrated  pop-up  ad  blocker  and  safeguards  against  online  scams  such  as  phishing  and 
spoofing  by  displaying  secure  sites’  identities,  Mozilla  said. 

Intel  names  successor 

■  Intel  as  expected  has  announced  a  successor  to  CEO  Craig  Barrett,  who  will  retire  in 
May  after  30  years  at  the  company  Paul  Otellini.who  is  currently  COO  for  the  beleaguered 
chipmaker, will  assume  the  mantle  of  CEO. Otellini.who  has  been  with  Intel  for  30  years, 
is  credited  with  the  push  into  dual-core  processor  technology  and  for  the  cancellation  of 
the  4-GHz  Pentium  4  processor.  He  will  be  the  first  Intel  CEO  who  is  not  an  engineer. 


Vendors  look  to  secure  IP-based  P0S  devices 

■  VeriFone,  which  makes  point-of-sale  devices  merchants  use  for  credit  and  debit  card 
processing,  last  week  announced  it  is  teaming  with  McAfee  to  develop  anti-virus  software 
for  Internet-enabled  payment  terminals.  VeriFone  said  the  anti-virus  software  for  POS 
devices,  expected  to  be  an  industry  first,  is  necessary  because  merchants  are  opting  for  IP- 
based  POS  equipment  over  traditional  circuit-switched  equipment.  McAfee  and  VeriFone 
expect  to  have  anti-virus  software  for  the  IP-based  POS  devices  available  initially  in  North 
America  early  next  year. 

Domain  name  transfers  made  easier 

■  A  new  transfer  policy  for  inter-registrar  domain  names  went  into  effect  last,  the  Internet 
Corporation  for  Assigned  Names  and  Numbers  said.  Domain  name  owners  now  will  be 
able  choose  registrars  much  in  the  same  fashion  that  telephone  numbers  can  be  moved 
between  carriers.The  idea  behind  the  policy  is  to  let  users  find  the  services  and  prices  that 
best  suit  their  needs,  to  increase  competition  between  registrars  and  to  drive  down  costs, 
ICANN  said. The  group  said  it  has  moved  to  provide  strong  protections  against  unautho¬ 
rized  transfers  of  domain  names  by  now  requiring  registrars  to  verify  the  identity  of  the 
domain  name  registrant  and  use  a  clear  standardized  form  of  authorization  to  gain  prior 
consent  from  that  person  or  group  before  any  changes  are  made.  (See  story  on  ICANN 
nearing  .net  decision,  page  8.) 


Getting  patching  right  A  debate 

Today  Nov  15,  Network  World  will  launch  an  all-week  online  debate  featuring  vendors 
from  three  sectors  involved  in  the  patching  puzzle:  pure-play  patch  management  players 
Shavlik  and  BigFix; server  and  desktop  management  vendors  Altiris  and  Configuresoft; 
and  vendors  that  couple  vulnerability  scanning  with  patch  management,  Citadel  and 
Symantec. 

We’ll  launch  the  debate  with  vendors’  answers  to  questions  from  Network  World  Senior 
Editor  John  Fontana,  Senior  Writer  Denise  Dubie  and  guest  expert  Felicia  Nicastro, 
principal  consultant  with  International  Network  Services,  a  professional  services 
consultancy  On  Tuesday  Nov.  16,  we’ll  have  the  vendors  question  each  other, and  then 
on  Nov.  17  we’ll  open  it  to  the  audience. 

’  virtual  showdown 

www.nwfusion.com,  DocFinder:  4621 
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Wireless  LAN  product  barrage  on  tap 

Cisco  and  Symbol  among  those  with  new  offerings. 


■  BY  JOHN  COX 

Some  of  the  biggest  names  in 
the  wireless  LAN  industry  this 
week  plan  to  unveil  products  that 
could  help  define  the  next  stage 
for  enterprise  wireless  networks. 

The  products  are  from  hard¬ 
ware  vendors  Aruba  Wireless  Net¬ 
works,  Cisco  and  Symbol  Technol¬ 
ogies,  and  software  vendor 
Network  Chemistry  which  offers  a 
wireless  intrusion-detection  and 
-prevention  system.  As  a  whole, 
the  offerings  define  an  enterprise 
WLAN  as  an  infrastructure  that: 

•  Supports  802.1  lg  and  802.11a 
radios  at  the  same  time,  for  maxi¬ 
mum  capacity 

•  Marries  user  and  device  infor¬ 
mation  with  centralized  security 
policies. 


•  Expands  control  over  the  air¬ 
waves,  to  combat  rogue  connec¬ 
tions  and  minimize  interference. 

“The  big  question  is,  how  do 
you  manage  the  security  and 
reliability  of  the  WLAN,  and  do 
that  in  a  way  that’s  operationally 
efficient?”  says  Abner  Germanow, 
program  manager  for  enterprise 
networking  and  WLANs  at  IDC. 
“That’s  one  of  the  common  ele¬ 
ments  you  can  see  in  these  and 
other  recent  announcements.” 

Cisco,  which  dominates  the 
access  point  market  with  a  40% 
share,  now  is  selling  its  first  access 
points  —  the  Aironet  1130  and 
1230  —  with  802.1  lg  and  802.1  la 
radios  already  installed.  In  the 
past,  some  of  the  single-radio 
Aironet  devices  could  be  upgrad¬ 
ed  by  plugging  in  a  second  radio. 


Symbol  rolls  out  better  encryption, 
new  IPSec  VPN  support  and  dual¬ 
radio  access  points  for  its  WLAN 
switch  line. 

Symbol  now  offers  a  similar 
dual-radio  access  point,  the 
AP300.  It’s  the  first  Symbol  prod¬ 
uct  to  support  802.1  lg,  which 
some  vendors  first  offered  a  year 
ago.  Symbol  delayed  until  it  got 
the  kind  of  802. 1 1  g  silicon  it  want¬ 
ed  from  chipmaker  Conexant. 


Competition  heats  up  for  key 
piece  of  'Net  infrastructure 


■  BY  CAROLYN  DUFFY  MARSAN 

When  most  people  think  of  the  Internet,  they  think 
of  Web  sites  with  names  ending  in  .com.  However, 
many  network  engineers  rely  heavily  on  servers  with 
.net  names  to  keep  their  higher-profile  Web  opera¬ 
tions  up  and  running. 

Among  the  e-commerce  sites  that  have  DNS 
servers  running  on  .net  are  Amazon.com,  Microsoft, 
com  and  Walmart.com.  Government  agencies  such 
as  the  Federal  Emergency  Management  Agency  and 
the  National  Security  Agency  depend  on  .net  servers 
to  support  their  .gov  Web  sites.  Several  ISPs,  includ¬ 
ing  EarthLink  and  Comcast,  run  their  e-mail  opera¬ 
tions  on  the  .net  domain. 

Indeed,  .net  is  the  largest  top-level  domain  when 
ranked  by  number  of  hosts  connected  to  the 
Internet,  according  to  VeriSign,  which  operates  the 
.com  and  .net  registries.  More  than  44%  of  hosts  use 
.net,  and  31%  of  all  Web  page  views  are  dependent 
on  .net  for  resolution, VeriSign  says. 

With  just  less  than  5  million  .net  names  sold,  the 
net  domain  is  often  overshadowed  by  the  .com 
domain  with  its  30  million  registered  names. 

That’s  about  to  change. 

The  .net  domain  will  be  thrust  into  the  limelight 
over  the  next  six  months  as  the  government-funded 


organization  that  oversees  the  Internet’s  domain 
name  and  addressing  schemes  awards  a  contract  to 
a  company  to  operate  the  .net  registry 

“.Net  was  designed  to  be  the  transportation  layer  of 
the  Internet,”  says  Tom  Galvin,  vice  president  of  gov¬ 
ernment  relations  for  VeriSign  “Thirty-seven  of  the  top 
100  e-commerce  sites  rely  on  .net. . . .  It’s  much  more 
important  than  4.9  million  names  indicates.” 

Two  camps  are  emerging  in  the  network  industry: 
Those  who  support  VeriSign  and  don’t  want  to  risk 
switching  .net  registry  providers, and  those  who  favor 
more  competition  in  the  domain  name  industry  and 
think  a  new  provider  will  offer  innovative  services. 

The  .net  registry  has  been  operated  by  VeriSign  or 
its  predecessor,  Network  Solutions,  since  1993. 
VeriSign  now  is  competing  against  several  other  pro¬ 
viders  of  domain  name  registries,  including  Afilias 
and  NeuLevel,  to  keep  its  .net  business.  Denic,  the 
German  nonprofit  organization  that  operates  the  .de 
country  code  top-level  domain,  is  another  potential 
competitor. 

The  .net  registry  operates  the  highly  available  and 
redundant  servers  around  the  globe  that  handle  bil¬ 
lions  of  .net  queries  per  day  The  .net  registry  also 
supports  a  massive  database  that  includes  informa¬ 
tion  about  each  .net  name  and  handles  additions, 

See  Domains,  page  18 


These  twin-radio  access  points 
not  only  work  with  any  WLAN 
client,  802. 1 1  b,  g  or  a,  but  also  dra¬ 
matically  increase  WLAN  capac¬ 
ity  Together,  802.1  lg  and  802.11a 
offer  15  radio  channels  at  each 
access  point.  This  means  more 
users  can  share  a  larger  data 
pipe,  with  a  data  rate  of  54M 
bit/sec,  than  is  possible  with  just 
the  three  channels  of  802.1  lb. 

Extra  channels  are  good,  says 
Craig  Mathias,  an  analyst  at 
Farpoint  Group. “You  want  to  opti¬ 
mize  for  capacity’  he  says.  “The 
pitch  we  make  to  our  end-user 
clients  is,  you’re  going  to  get  a  lot 
more  capacity  [with  more  chan¬ 
nels]  ,  and  you’ll  need  that  capac¬ 
ity  as  you  start  to  put  things  like 
voice  calls  on  your  WLAN  net.” 

Cisco’s  Aironet  1130AG,  in  a 
plastic  case  with  built-in  omnidi¬ 
rectional  antenna  for  wall  mount¬ 
ing,  costs  $700;  the  1230AG  casing 
meets  codes  for  installation 
above  drop-ceilings,  and  can  be 
matched  to  various  directional 
antennas.  It  costs  $  1 ,000.  Symbol’s 
AP  300  costs  half  that  amount. 

The  AP  300  is  a  thin  access 
point, stripped  down  to  little  more 
than  the  two  radios,  with  intelli¬ 
gence  shifted  to  the  WLAN 
switch.  The  intelligence  is  in 
Symbol’s  WLAN  switch  products. 
The  company  is  releasing  Version 
1 .5  of  its  software  for  the  WS2000 
switch,  which  combines  an 
access  point  with  a  stateful  fire¬ 
wall,  Power-over-Ethernet  support, 


a  WAN  uplink  and  storage  in  a 
compact,  four-port  box. 

The  new  software  supports 
Advanced  Encryption  Standard 
encryption  and  the  rest  of  the 
802.1  li  security  standard,  includ¬ 
ing  Pairwise  Master  Key  (PMK) 
Caching.  PMK  caching  is  a  tech¬ 
nique  for  sidestepping  the  need 
to  re-establish  security  each  time 
a  wireless  client  moves  to  a  new 
access  point,  according  to  Gary 
Singh,  senior  director  of  market¬ 
ing  for  Symbol.  WS2000  pricing  is 
unchanged  at  about  $1,000. 

Switch  vendor  Aruba  is  expand¬ 
ing  its  switches,  called  Grid 
Controllers,  to  become  a  kind  of 
security  clearinghouse  not  only 
for  wireless  but  now  for  wired 
clients. These  controllers  can  run 
applications  or  link  with  third- 
party  applications  for  anti-virus 
scanning  and  updating,  intrusion 
detection,  and  content  filtering. 
Using  Aruba’s  Grid  software  and 
hardware,  network  administra¬ 
tors  can  create  and  enforce  a 
range  of  security  authentication 
and  access  policies  and  apply 
them  to  a  given  user  accessing 
the  network  with  a  given  device. 

The  6000  Grid  Controller  has  a 
two-port  Gigabit  Ethernet  line 
card  and  a  supervisor  module 
that  can  process  3.6G  bit/sec  of 
encrypted  traffic.The  6100  model 
doubles  that  to  7.2G  bit/sec. 

Aruba’s  wireless  Grid  Fbints  are 
in  essence  WLAN  access  points 
See  WLAN,  page  18 


NEW  SECTION  ADDED 

Beginning  with  this  issue, Network  World  has  added  a  section 
called  Enterprise  Computing  to  serve  as  a  home  for  news  and 
analysis  about  everything  from  servers  to  storage  networks, 
grid/utility  computing  and  Windows  and  Linux  developments. 

Other  sections  have  been  renamed,  as  well.  Infra-structure 
has  become  Net  Infrastructure  to  distinguish  it  from  Enterprise 
Computing,  and  Enterprise  Applications  is  now  Application 
Services  in  recognition  of  corporate  efforts  to  deliver 
applications  as  services  and  the  arrival  of  service-  oriented 
architectures. 

Feedback  to  Editor  in  Chief  John  Dix,  jdix@nww.com. 
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Spyware  is  one  of  the  most  invasive  threats  to  your  enterprise  today.  It  steals 
bandwidth,  halts  productivity  and  puts  your  intellectual  property  in  harm's 
way.  Webroot  Spy  Sweeper  Enterprise  offers  real-time  protection  by  identifying 
and  eradicating  spyware  across  your  organization.  To  see  the  magnitude  of 
the  spyware  threat,  run  a  free  network  scan  at  www.webroot.com/smack  or 
contact  us  at  866.254.6360 
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dllCi  Lessons  from  leading  users 

Hospitals  smooth  prescription  process 


Prescription  safety  net 


The  Medslnfo-ED  project  is  aimed  at  replacing  time-consuming  and  error-prone 
emergency  department  processes  for  collecting  medication  history  with  more  streamlined, 
automated  methods. 
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O  RxHub  patient 
information  exchange 


Medication  data  from  health 
plan  providers 


t 

in 

< - ►  C  Internet  \  - ► 


©  Medslnfo-ED  Web  application  hosted  at  Zix 


O  RxHub  electronically  routes  patient  med¬ 
ication  history  between  some  providers, 
such  as  Tufts  Health  Plan,  and  the  Medslnfo- 
ED  application. 


©  The  Medslnfo-ED  application,  hosted  by  third- 
party  service  provider  Zix  in  Dallas,  uses  Web 
services-based  queries  to  cull  information 
from  participating  medication  data  providers. 


©  Authenticated  emergency  room  caregivers 
query  the  Medslnfo-ED  application  to  obtain 
a  patient’s  medication  history. 


■  BY  ANN  BEDNARZ 

Some  of  Massachusetts’  largest  health  plan  compa¬ 
nies,  hospitals  and  prescription  providers  are  unit¬ 
ing  to  pilot  technology  aimed  at  getting  critical 
patient  information  quickly  and  easily  in  the  hands  of 
emergency  room  caregivers.  Dubbed  Medslnfo-ED,  the 
project  is  designed  to  give  healthcare  providers  in  hos¬ 
pital  emergency  departments  real-time  access  to 
patients’  prescription  histories. 

Existing  emergency  department  processes  for  collect¬ 
ing  medication  history  are  incomplete,  error-prone  and 
time-consuming,  experts  say  The  information  that 
patients  verbally  provide  to  staff  can  be  lacking. 

“Patients  typically  do  not  recall  the  medications  they 
are  taking, such  as,‘i  take  a  blue  pill  twice  a  day  for  high 
blood  pressure,’” says  John  Elalamka,  CIO  of  CareGroup, 
a  network  of  four  Boston-area  hospitals. 

The  goal  of  Medslnfo-ED  is  to  supplement  the  informa¬ 
tion  patients  provide  to  emergency  department  staff. The 
Web-based  application  processes  and  aggregates  a 
patient’s  medication  history  in  a  secured  portal  interface. 

The  Massachusetts  Health  Data  Consortium,  a  non¬ 
profit  coalition  of  private  and  public  healthcare  organi¬ 
zations,  is  spearheading  MedsInfo-ED.The  effort  is  part  of 
a  program  the  group  launched  last  year  to  develop  com¬ 
mon  patient  identification  technology  data  aggregation 
services,  and  privacy  and  security  standards.  It’s  being 
funded  in  part  by  a  $400,000  contract  the  consortium 
received  in  July  from  the  Foundation  for  eHealth 
Initiative. 

The  first  three  hospitals  to  pilot  Medslnfo-ED  are 
Emerson  Hospital  in  Concord,  Mass.,  which  went  live 
with  the  program  in  late  October;  Boston  Medical 
Center,  which  went  live  this  month;  and  Beth  Israel 
Deaconess  Medical  Center  in  Boston,  which  is  part  of 
the  CareGroup  network  and  is  expected  to  go  live  this 
month.  The  hospitals  serve  a  combined  14,000  emer¬ 
gency  patients  per  month. 

The  success  of  the  project  requires  bringing  together 
electronic  medication  history  from  all  possible  data 
sources.  The  health  plans  and  pharmacy  benefit  man¬ 
agers  that  are  providing  patients’  prescription  informa¬ 
tion  include  Blue  Cross  Blue  Shield  of  Massachusetts; 
Harvard  Pilgrim  Health  Care;  Massachusetts  Group  In¬ 
surance  Commission,  a  state  employees  benefit  plan; 
MassHealth.a  Medicaid  program;  Neighborhood  Health 
Plan;  and  Tufts  Health  Plan. 

The  breadth  of  these  data  sources  is  what  makes 
Medslnfo-ED  significant,  according  to  Halamka. 
“Typically  medication  lists  are  limited  to  a  single  hospi¬ 
tal  or  doctor’s  practice,”  he  says.  “Medslnfo  presents  a 
complete,  longitudinal  history  of  the  meds  a  patient  has 
actually  filled.”  Having  accurate  medication  lists  in  hand 
can  help  reduce  medical  errors  from  drug  interactions. 

More  online! 

Managing  the  shape  of  the  new  data 
center  in  the  year  ahead?  Attend 
The  2005  IT  Road  Map,  an  upcoming 
Tech  Tour  Event  live  with  John  Gallant. 

DocFinder:  4449 


One  challenge  in  designing  Medslnfo-ED  was  making 
sure  all  the  organizations  would  provide  consistent  infor¬ 
mation  —  such  as  identifying  what  drugs  were  pre¬ 
scribed,  accompanying  instructions,  dosages  and  the 
pharmacy  that  filled  each  prescription  —  and  use  the 
same  database  look-up  fields.  “It’s  getting  everybody 
together;  that’s  the  hard  part,”  says  Mick  Kowitz,  CTO  at 
Zix,  which  did  much  of  the  development  of  Medslnfo-ED. 

Medslnfo-ED  is  built  around  Zix’s  electronic  prescrip¬ 
tion  technology  which  lets  doctors  in  outpatient  clinics 
and  family  practices  use  handheld  devices  to  deter¬ 
mine  a  patient’s  health  plan  eligibility  and  medication 
history  then  checks  for  drug  interactions  and  known 
allergies  before  electronically  sending  a  prescription  to 
a  pharmacy 

Medslnfo-ED  uses  Zix’s  technology  for  checking  eligi¬ 
bility  and  medication  history  but  stops  short  of  deliver¬ 
ing  prescription-filing  tools.  “It’s  really  a  subset  of  our 
existing  technology’  Kowitz  says. 

Zix  hosts  the  application  in  its  Dallas  data  center, 
where  it  makes  connections  to  the  various  pharmacy 
benefit  managers  involved  in  the  Medslnfo-ED  project. 

Integration  challenges  have  been  a  key  obstacle  to 
clinical  connectivity  projects  like  this. 

“Medication  is  stored  in  heterogeneous  ways,  and 
building  standards-based,  interoperable  connections 
among  companies  that  host  medication  data  has  taken 
a  great  deal  of  time,” Halamka  says.“Eighty  percent  of  the 
effort  is  process/organizational  and  20%  is  technical.” 

From  its  work  as  an  electronic  prescription  vendor, 
Zix  already  had  tackled  the  job  of  integrating  with 
three  major  medication  data  providers,  via  the  third- 
party  RxHub  exchange,  Kowitz  says.  For  Medslnfo-ED, 
Zix  added  direct  links  to  two  additional  data 
providers. 

When  an  authenticated  user  sends  a  patient  query 


from  one  of  the  hospital  emergency  departments,  the 
Medslnfo-ED  application  sends  a  request  to  each  partic¬ 
ipating  prescription  data  provider.  The  software  aggre¬ 
gates  the  responses  —  no  small  task. 

“They  all  return  information  in  a  little  bit  different 
structures,  with  different  wrappers  around  the  data,” 
Kowitz  says.  Some  use  Simple  Object  Access  Protocol 
wrappers,  others  use  standard  XML,  for  example.” Behind 
the  scenes,  there’s  a  lot  of  asynchronous  communica¬ 
tion,  wrapping  the  data  together  and  unifying  the  archi¬ 
tecture  and  formats,”  he  says. 

At  the  hospital  sites,  IT  staff  can  tie  the  Medslnfo-ED 
application  into  their  existing  systems.  For  example, 
Boston  Medical  Center  linked  the  application  to  its 
Active  Directory  system  to  enable  single  sign-on.  When 
users  access  the  Medslnfo-ED  application,  all  the  con¬ 
trols  and  permissions  are  set  based  on  their  existing 
Active  Directory  preferences,  Kowitz  says. 

At  Beth  Israel  Deaconess,  the  Medslnfo-ED  application 
is  linked  to  the  hospital’s  admissions  systems  so  users 
don’t  have  to  log  on  twice  or  do  duplicate  data  entry 
Patient  information  is  passed  via  XML  to  the  Medslnfo- 
ED  search  interface. 

To  meet  legal  privacy  and  security  requirements, 
Medslnfo-ED  doesn’t  store  any  clinical  data.  Once  a 
query  is  answered  —  which  can  take  upwards  of  10 
seconds,  according  to  Kowitz  —  Medslnfo-ED  dumps 
the  drug-history-related  information.  “All  we  keep  is  an 
audit  trail  of  what  the  request  data  was,  who  responded 
and  how  many  responses  we  got,”  Kowitz  says. 

To  comply  with  Massachusetts  law,  the  application  will 
screen  out  sensitive  classes  of  medications  for  treatment 
of  HIV  and  AIDS,  mental  health  and  substance  abuse. 

The  Massachusetts  Health  Data  Consortium  expects  to 
have  10  hospitals  participating  in  Medslnfo-ED  by  the 
end  of  next  year.H 
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3Com  is  the  latest  to  go  10G 

New  switches,  line  cards  aimed  at  luring  back  large  enterprise  users. 


■  BY  PHIL  HOCHMUTH 

3Com  is  expected  to  join  the 
10G  Ethernet  parade  this  week 
with  the  Switch  8800  series  —  its 
first  line  of  lOG-capable  back¬ 
bone  boxes. 

The  series  includes  three  chassis 
with  support  for  dual-port  10G 
and  high-density  Gigabit  blades 
aimed  at  companies  that  want  to 
ease  into  data  center  or  LAN  core 
bandwidth  expansion, 3Com  says, 
instead  of  high-flying  switch  gear 
with  too  much  bang  for  too  many 
bucks.  3Com  is  leveraging  its  joint 
venture  with  Huawei  Technolo¬ 
gies  to  deliver  the  gear  at  lower 
prices,  observers  say 

However,  a  challenge  remains 
for  3Com  to  regain  credibility 
among  big  IAN  switch  buyers, 
after  its  temporary  exit  from  the 
market  in  2000,  observers  say 

3Com  is  pursuing  enterprise  net¬ 
works  with  the  8800,  rather  than 
large  institutional  research  firms 
and  carriers,  where  competitors 
have  found  early  adopters.  3Com 
says  its  10G  products  are  aimed  at 
businesses,  government  and 
learning  institutions  where  LAN 
bandwidth  is  tapped  out. 

Among  the  beta  customers  for 
3Com’s  new  10G  products  are 
Covenant  Healthcare,  a  commu¬ 
nity-owned  hospital  network  in 


Knoxville,  Tenn.,  and  school  dis¬ 
tricts  in  Palm  Beach,  Fla.,  and 
Vineland  County  N.J. 

On  a  speeds-and-feeds  level,  the 
8800  series  does  not  match  up  to 
the  latest  high-end  10G  wares 
from  Cisco,  Enterasys  Networks, 
Extreme  Networks,  Force  10  Net¬ 
works  and  Foundry  Networks. 

But  3Com’s  strategy  is  to  offer  its 
existing  customers  “just  the  right” 
amount  of  10G  options  as  band¬ 
width  needs  grow.“We  never  want 
to  be  the  ‘hot  box’  in  the  market,” 
says  Bill  Naas,  product  manager 
for  the  Switch  8800  series.  Rather, 
he  says,  the  company  offers  10G 
at  competitive  prices. 

The  switch  line  includes  three 
chassis  —  the  14-slot  8814, 10-slot 
8810  and  seven-slot  8807.  (The 
chassis  require  two  switch  fabric 
modules,  so  subtract  two  slots  on 
each  model  for  the  total  number 
of  service  slots  available.)  The 
first  switch  fabric  modules  for  the 
8800  series  can  handle  360G 
bit/sec.The  blades  run  in  tandem, 
and  support  load  sharing  with 
failover  capabilities,  giving  8800 
series  units  a  total  backplane 
capacity  of  720G  bit/sec.  Later  in 
2005, 3Com  will  release  new  fab¬ 
ric  modules,  each  with  720G 
bit/sec,  upping  the  8800  series 
total  capacity  to  1.44T  bit/sec. 

The  vendor  says  its  8800  series 


3Com  colors  in  10G  blueprint 


3Com’s  new  core  10G  switch  (8800  series),  and  10G  cards  for  its  7700  distribution  switch 
and  3870  wiring  closet  box,  fill  out  the  vendor’s  10G  offerings. 


New 

8810  chassis  with  fabric 
modules  and  power:  $36,000 

LAN  core 

fnnnnnnnX/™ 

Dual-port  10G  module:  $13,000 

m 


Single-port  10G  cards:  $5,000 


New 

Single-port  10G  uplink  cards: 
$3,000 


products  with  10G  Ethernet  will 
cost  up  to  25%  less  than  competi¬ 
tive  gear,  specifically  Cisco’s 
Catalyst  6500  switch  series. 

A  product  comparison  shows 
the  3Com  box  would  cost  around 
10%  less  than  Cisco.  A  a  13-slot 
Catalyst  6513  chassis  with  a  720G 
bit/sec  fabric  module,  power  sup¬ 
plies  and  fans  starts  at  around 
$61,000;  3Com  says  its  8814  starts 
at  $36,000,  but  an  additional 
$20,000  switch  fabric  must  be 
added  to  match  the  bandwidth  of 
the  720G  bit/sec  Catalyst, bringing 
the  8800’s  bill  to  $56,000. 
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Switch  7700s 


Hi 


Up  to  24  10G  ports 
or  288  1G  ports. 


Up  to  six  10G  ports 
or  168  1G  ports. 


I 


S'  Wiring  closets  ^  Up  to  48  10/100/ 

[nmnnrui-Jy  [ruuinnnrU/1  10oom  bit/sec  links. 
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Switch  3870s 


Despite  what  customers  might 
think  of  3Com’s  past  forays  into 
and  exits  from  the  enterprise  LAN 
core  switch  market,  analysts  say 
the  competitive  pricing  on  the 
8800  should  get  some  to  at  least 
consider  3Com. 

“This  is  pretty  much  a  validation 
of  the  strategy  3Com  had  in  part¬ 
nering  with  Huawei,”  says  Steven 
Schuchart,  a  senior  analyst  with 
Current  Analysis. 

‘A  lot  of  enterprises  dropped 
3Com  like  a  hot  rock  when  they 
left  the  enterprise,  and  [3Com] 
has  tried  to  regain  a  foothold  in 


Vendors  back  Web  app  security  testing 


■  BY  ELLEN  MESSMER 

Debate  over  what  protections  a 
Web  application  firewall  is  sup¬ 
posed  to  provide  reached  a  head 
last  week  as  four  security  vendors 
rallied  around  a  common  prod¬ 
uct-testing  regimen. 

Although  each  offers  a  distinctly 
different  product  for  protecting 
applications  from  attack,  F5 
Networks,  Imperva,  NetContin- 
uum  and  Teros  say  they  are  back¬ 
ing  five  types  of  tests  to  be  done  at 
ICSA  Labs  that  will  show  a  prod¬ 
uct  can  recognize  and  block 
some  common  threats,  such  as 
SQL  injection. 

The  four  vendors  say  the  ICSA 
Labs  security  evaluation  will  help 
clear  up  market  confusion  about 
what  application  security  fire¬ 
walls  do.  They  pointedly  chal¬ 
lenged  many  other  vendors,  in¬ 
cluding  Check  Point,  Cisco, 


Measuring  Web 
application  security 

ICSA  Labs*  will  test 
products  for: 


Preventing  command 
execution  attacks 

Enforcing  strict  controls 
on  application  inputs 

Preventing  cookie 
tampering 

Thwarting  form  field 
tampering 

Stopping  URL  and 
parameter  tampering 


*F5  Networks,  Imperva,  NetContinuum  and 
Teros  are  backing  the  testing  regimen,  which 
they  say  will  dear  up  confusion  about  what 
constitutes  application  security. 


Juniper,  McAfee  and  Symantec,  to 
join  them  in  submitting  products 
for  testing. 

“If  you  have  an  intrusion-pre¬ 
vention  system  or  firewall,  these 
are  the  baseline  things  you  have 
to  do  for  Web  application  secur¬ 
ity’  says  Wes  Wasson,  vice  presi¬ 
dent  of  marketing  and  chief 
strategy  officer  at  NetContin¬ 
uum,  which  makes  the  NC-1000 
application  security  gateway. The 
four  vendors  launched  the  prod¬ 
uct-testing  initiative  during  last 
week’s  Computer  Security 
Institute  conference  in  Washing¬ 
ton,  D.C. 

Scott  Markle,  ICSA  Labs  technol¬ 
ogy  program  manager,  says  the 
evaluation  tests,  expected  to  start 
early  next  year,  were  developed 
with  help  from  SPI  Dynamics,  a 
maker  of  Web  application  secur¬ 
ity  assessment  products. 

Wasson  says  the  larger  vendors 


might  not  be  intentionally  mak¬ 
ing  misleading  claims  but  they  do 
sow  confusion  about  application 
firewalls.“We’re  hopeful  this  effort 
helps  by  giving  customers  a  more 
standardized  way  of  evaluating  all 
of  us,”  he  says. 

Cisco,  McAfee  and  Symantec  all 
had  a  muted  reaction  to  the  Web 
application  security  “challenge” 
last  week,  saying  they  would  look 
at  the  program. 

However, Check  Point’s  manager 
of  market  intelligence,  Andrew 
Singer,  called  the  collaborative 
effort  “a  big  positive  step,”  saying 
ICSA  Labs  could  play  a  role  in 
bringing  the  vendors  together  to 
set  standards  for  application  secu¬ 
rity  defense. 

But  Singer  expressed  reserva¬ 
tions  that  the  ICSA  Labs  test  crite¬ 
ria,  developed  only  with  input 
from  the  four  vendors,  might  favor 
their  products.  ■ 


the  market  ever  since,”  he  says. 
“The  [8800  series]  gives  3Com  a 
legitimate  performance  product 
and  puts  them  back  to  where 
they  were”  four  years  ago. 

The  8800  series  is  the  fourth 
enterprise  product  line  to  come 
from  the  Huawei-3Com  joint  ven¬ 
ture,  which  was  announced  last 
year.  The  first  was  the  7700  series 
of  midsize  switch  chassis,  fol¬ 
lowed  by  the  5000  and  6000 
series  of  WAN  access  routers.  As 
with  past  Huawei-3Com  joint  ven¬ 
ture  products,  the  8800  series  was 
designed  and  built  in  China  by 
Huawei  engineers  according  to 
3Com  specifications. 

3Com  is  rounding  out  its  10G 
offerings  with  a  single-port  10G 
module  for  its  Switch  7700  series 
box,  which  could  let  the  device 
act  as  a  10G  aggregation  box 
between  wiring  closet  switches 
and  a  10G  core.  3Com  also  is 
adding  a  10G  Ethernet  uplink 
module  to  its  SuperStack  3  Switch 
3870  switch.  This  lets  the  48-port 
10/1 00/ 1 000M  bit/sec  switch 
uplink  to  a  lOG-enabled  7700  in 
the  distribution  layer,  or  directly  to 
a  core  8800  with  10G  blades. 

3Com’s  8814  will  cost  $36,000  for 
the  chassis,  fabric,  power  and  fan 
modules.  The  8810  costs  $30,000 
and  the  8807  costs  $26,000.  Dual¬ 
port  10G  Ethernet  cards  for  the 
8800  series  cost  $13,000  without 
optics.  Modular  lOGBase-LR  (6- 
mile  range)  and  ER  (25-mile 
range)  optics  have  not  been 
priced  yet,  but  will  be  available  in 
the  first  quarter  of  2005,  along  with 
the  rest  of  the  3Com  10G  gear. 
3Com  says  it  will  have  a  copper- 
based  10GBase-CX4  module  in 
the  second  quarter  of  2005.  ■ 
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Mike  Block 
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©soft  puts  anti-trust  issues  behind  it 


N  BY  JOHN  FONTANA 

As  the  ink  dries  on  settlements 
that  could  well  bring  to  a  conclu¬ 
sion  a  pair  of  anti-trust  cases  that 
have  long  dogged  Microsoft, 
experts  question  whether  the 
company  is  truly  committed  to  a 
new  way  of  doing  business  or  is 
merely  gearing  up  to  do  battle  on 
new  fronts. 

“1  think  Microsoft  is  fixing  to  get 
this  stuff  out  of  the  way  and  then 
you  will  see  the  real  battle  en¬ 
gaged, ’’says  John  Enck.an  analyst 
with  Gartner.They  are  taking  care 
of  business." 

Those  battle  engagements  seem 
most  likely  to  happen  around 
search  engine  technology  busi¬ 
ness  applications,  real-time  com¬ 
munication  and  telephony 

Microsoft  last  week  signed  set¬ 
tlement  agreements  with  the 
Computer  and  Communications 
Industry  Association  (CCIA)  and 


Novell.  The  deals  effectively  end 
the  longest-running  anti-trust  case 
in  U.S.  history'  and  subtract  the 
European  Union’s  last  remaining 
allies,  save  Real  Networks,  in  its 
still  unfinished  anti-trust  case 
against  Microsoft.The  CClAs  with¬ 
drawal  of  a  complaint  related  to 
Windows  XP  possibly  removes  a 
major  hurdle  to  a  settlement 
between  Microsoft  and  the  EU. 

The  settlements  are  part  of  an 
18-month  effort  that  has  seen 
Microsoft  spend  nearly  $3  billion 
to  settle  anti-trust  issues  with 
agreements  and  payouts  to  AOL7 
Time  Warner,  Sun  and  Novell. The 
company  spent  another  $1  bil¬ 
lion  for  class  action  suits,  and 
Microsoft  says  it  may  well  spend 
an  additional  $950  million. 

“We  believe  that  this  sends  a 
strong  message  that  we  and  other 
companies  in  our  industry  do 
have  the  capacity  now  to  sit 
down  face  to  face  and  resolve  the 


Microsoft  last  week  settled  with  two  organizations  that  have  been  instrumental  in 
anti-trust  lawsuits  brought  against  the  software  giant. 


Organization 


Computer  and 
Communications 
Industry  Association 
(CCiA)-  a  nonprofit 
group  that  promotes 
competitive  and  fair 
open  markets,  systems 
and  networks. 


What's  settled 


CCIA  withdraws  from  all  European 
Union  litigation,  including  a 
complaint  related  to  Windows  XP, 
the  major  stumbling  block  to  a 
Microsoft-EU  settlement.  CCIA  also 
will  not  seek  Supreme  Court  review 
of  U.S.  anti-trust  suit. 


Microsoft  pays  $536  million  to 
resolve  anti-trust  claims  related  to 
Ware.  Novell  withdraws  from  EU 
ti-trust  case. 


Remaining  issues 


Microsoft  has  joined  CCIA,  a  move 
that  made  Nokia  quit  the  organization. 
CCIA  says  it  remains  fully  commit¬ 
ted  to  its  mission  and  says  it  hopes 
Microsoft  will  help  work  on  issues 
such  as  security,  privacy,  R&D  and 
broadband. 


Agreement  was  not  reached  on 
Novell’s  WordPerfect  as  it  relates 
to  the  anti-trust  case.  Novell  plans 
to  file  a  new  lawsuit. 


kinds  of  thorny  anti-trust  issues 
that  in  the  past  were  left  instead 
to  the  government  to  resolve,” said 
Brad  Smith,  senior  vice  president 
and  general  counsel  at  Microsoft, 


last  week  during  a  press  confer- 
ence.“The  second  major  theme  in 
my  mind  that  is  quite  important  is 
the  foundation  this  creates  for  our 
industry  to  work  together  on  the 


VoIP  ruling  a  start,  not  an  end 


■  BY  JIM  DUFFY  AND  STEPHEN  LAWSON 

The  FCC’s  decision  last  week  to  exempt  VoIP 
from  state  regulation  is  heralded  as  a  water¬ 
shed  ruling  by  some, but  it  is  only  the  first  step 
in  defining  policy  for  broadband  IP  services. 

Last  week’s  ruling  does  not  define  whether 
VoIP  is  a  telecom  or  unregulated  information 
service.  That  is  being  hashed  over  in  another 
FCC  proceeding  that  began  earlier  this  year. 

The  FCC  determined  last  week  that  a  VoIP 
service  offered  by  Vonage  Holdings  is  inter¬ 
state  in  nature  and  therefore  not  subject  to  the 
public  utility  regulations  of  individual  U.S. 
states.  Vonage’s  DigitalVoice  service  can’t  be 
governed  by  dual  state  and  federal  rules 
because  it  can’t  be  practically  separated  into 
intrastate  and  interstate  components. 

The  FCC  opinion  extends  to  other  similar 
services,  such  as  those  that  cable  operators 
offer.  Looser  regulations  usually  translate  into 
increased  investment  in  those  services  and 
the  equipment  to  provide  them, 
which  means  enterprise  customers  y  peatj  in 
will  have  more  to  choose  from  and  Chief  John  Dix's 
compare  on  price.  take  on  the  rul- 

But  the  ruling  was  widely  expected.  in&  *“■ 
FCC  Commissioner  Michael  Powell 
favors  a  light  regulatory  touch  on  new  broad¬ 
band  services  like  VoIP  to  stimulate  invest¬ 
ment,  customer  choice  and  competition. 

However, some  believe  the  FCC’s  ruling  is  the 
first  —  not  the  last  —  word  regarding  VoIP  and 
broadband  IP  service  policy  There’s  still  much 
work  to  be  done,  and  the  industry  should  not 
overreact  to  a  single  ruling  on  a  single  service 
from  a  single  provider. 

“It’s  kind  of  overblown,”  says  Will  Stofega,  an 


fcfc  We’re  pleased  the  FCC  has  taken  a 
progressive  view  of  this  service  and  hope 
regulators  would  apply  the  same  light  touch 
to  outdated  regulations  governing  traditional 
telephone  service.) 9 

Dick  Notebaert 

CEO,  Owest 


analyst  at  IDC.“It  defines  a  very  particular  in¬ 
stance  in  response  to  one  company  and  one 
situation.  It  doesn’t  rule  out  a  lot  of  things.  It’s 
not  this  overarching  landmark  ruling.” 

“The  FCC  is  disputing  the  states’  right  to  regu¬ 
late,  but  they’re  not  necessarily  disputing  the 
need  for  regulation,”  says  Thomas  Nolle,  presi¬ 
dent  of  consultancy  CIMI.'The  FCC  is 
saying,  ‘We’re  going  to  regulate  this 
consistently  across  all  the  states.’” 

There  are  still  some  outstanding 
issues  to  resolve.  The  FCC’s  decision 
did  not  address  the  more  critical  issue 
of  whether  VoIP  was  a  telecom  or  information 
service,  notes  John  Hodulik  of  UBS  Warburg. 

“That  ruling  will  determine  if  VoIP  providers 
will  be  subject  to  access  charges  and  be  re¬ 
quired  to  contribute  to  the  universal  service 
fund,”  a  fee  imposed  on  service  providers  and 
their  customers  to  fund  telecom  service  in 
rural  areas,  Hodulik  says  in  a  report  on  the 
FCC’s  ruling.  Nor  did  it  address  public  safety 
issues,  namely  the  requirement  for  911  ser¬ 


vices  over  the  VoIP  service. 

The  FCC  said  those  issues  will  be  dealt  with 
in  the  larger  IP-enabled  services  proceeding, 
which  began  in  February 

Despite  the  specific  nature  of  the  ruling  and 
the  matters  that  still  need  to  be  addressed, 
other  VoIP  providers  applauded  the  decision. 

“Qwest  is  pleased  that  the  FCC  made  the 
right  call  today  in  determining  that  true  VoIP 
...  is  an  interstate  service  not  subject  to  over¬ 
sight  by  state  commissions,”  said  Qwest  CEO 
Dick  Notebaert  in  a  statement. “We’re  pleased 
the  FCC  has  taken  a  progressive  view  of  this 
service  and  hope  regulators  would  apply  the 
same  light  touch  to  outdated  regulations  gov¬ 
erning  traditional  telephone  service.” 

BellSouth  said, “We  encourage  the  commis¬ 
sion  to  complete  in  short  order  the  work  it  has 
started  here  by  establishing  a  similar  regime 
for  all  IP-enabled  networks  and  services  . . .” 

Lawson  is  a  correspondent  with  the  IDG 
News  Service. 


important  issues  of  the  future.” 

Microsoft  and  CCIA  said  in  the 
future  they  would  focus  on  issues 
such  as  funding  of  research  and 
development,  broadband,  privacy 
and  security 

“We  settled  the  litigation,  which 
was  very  consuming,  and  it  meant 
other  things  did  not  get  attention,” 
said  Ed  Black,  president  of  CCIA. 
But  Black  said  CGA  won’t  com¬ 
promise  its  goals  of  openness  and 
cooperation  and  still  expects  dis¬ 
agreements  with  Microsoft. 

Despite  some  experts’  reserva¬ 
tions  about  Microsoft,  others  say  it 
has  embarked  on  a  major  effort 
to  reinvent  its  reputation. 

“Microsoft  has  always  been  an 
aggressive  company’  says  Matt 
Rosoff,  an  analyst  with  indepen¬ 
dent  research  firm  Directions  on 
Microsoft.  “But  there’s  almost  now 
this  paranoia,  a  lot  of  times  unwar¬ 
ranted,  among  potential  cus¬ 
tomers  and  partners  that  Micro¬ 
soft  will  get  into  their  business 
space  and  they  won’t  play  fair.  By 
clearing  as  many  of  these  cases  as 
they  can  Microsoft  is  trying  to  re¬ 
verse  that  impression  a  little  bit.” 

“The  audience  for  this  stuff  is 
really  the  world  marketplace, 
where  Microsoft  has  run  into 
some  roadblocks,  which  often  are 
Linux-based,”  says  Dwight  Davis, 
an  analyst  with  Summit  Strat- 
egies.“Generally  speaking, settling 
these  issues  helps  make  the  com¬ 
pany  more  palatable  to  foreign 
governments.”  ■ 


■  Columnist  Dave 
Kearns  weighs  in  on 
Microsoft  and  Novell's 
legal  wrangling.  PAGE  31. 
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Solaris  1 0  garners  positive  reviews 


Super  Solaris? 

Version  10  of  Sun’s  Unix  software  boasts  these  features. 

Feature 

Description 

Solaris  containers 

Allows  software-based  virtual  partitions. 

ZFS  file  system 

Allows  massive  scalability  to  128  bits. 

Solaris/Linux  Appli¬ 
cation  Environment 

Linux  applications  can  run  in  Solaris  containers 
unmodified. 

DTrace 

Analyzes  system  performance  and  highlights 
bottlenecks,  boosts  performance. 

Project  FireEngine 

RewrittenTCP/IP  stack  increases  performance. 

■  BY  DENI  CONNOR  AND 
ROBERT  MCMILLAN 

Sun  this  week  is  expected  to 
unveil  Solaris  10,  the  most  signifi¬ 
cant  update  to  its  flagship  Unix 
operating  system  in  two-and-a- 
half  years.  Sun  also  will  introduce 
new  storage  products. 

The  new  Solaris  will  feature 
improved  multithreading  capabil¬ 
ities  and  a  new  TCP/IP  stack, 
dubbed  project  FireEngine,  that  is 
expected  to  increase  network 
performance  by  as  much  as  45%, 
Sun  says.  Solaris  now  will  be  able 
to  run  Linux  applications  without 
modification,  and  will  include  a 
new  error  detection  system  and 
diagnostic  tool  known  as  DTrace. 

“Overall,  Solaris  10  is  a  very  sig¬ 
nificant  release  that  has  more  fea¬ 
tures  that  are  both  visible  and 
meaningful  to  users  than  any 
other  recent  Unix  releases  1  can 
think  of,”  says  Gordon  Haff,  senior 


analyst  at  llluminata. 

The  most  important  new  feature 
of  Solaris  10,  Haff  says,  will  be  its 
use  of  containers,  which  let  users 
create  up  to  4,000  secure  fault-iso¬ 
lated  partitions  on  a  server. 

“Sun  was  the  great  proponent  of 
heavyweight  physical  partitions 
—  and  routinely  criticized  IBM 
and  VMware  for  trotting  out  soft¬ 
ware-based  approaches  like  logi¬ 


cal  partitioning,”  he  says. 

Sun  has  changed  its  approach 
because  it  did  not  fit  in  with  the 
company’s  new  focus  on  low-end 
x86-based  Opteron  servers,  Haff 
says.  The  hardware-based  parti¬ 
tioning  Sun  touted  typically  is  re¬ 
served  for  servers  with  more  than 
eight  processors,  he  says. 

“Containers  are  by  far  the  best 
feature  of  Solaris  10, ’’says  Rodrick 


Brown,  systems  architect  for  the 
city  of  New  York  department  of  IT 
and  telecommunications.  “Cur¬ 
rently  we  tend  to  procure  new 
hardware  for  new  projects  even 
though  we  have  tons  of  capacity 
that  could  be  leverged  on  exist¬ 
ing  hardware.  Containers  will  give 
us  that  logical  separation  that  will 
enable  us  to  mix  different  types  of 
applications  on  the  same  physi¬ 
cal  hardware  and  not  have  to 
worry  about  applications  con¬ 
flicting  with  each  other.” 

One  major  feature  that  won’t 
make  it  into  this  release  is  ZFS,  a 
highly  scalable  file  system  that 
can  be  used  for  virtualized  stor¬ 
age  and  expand  it  into  the 
exabyte  realm.  ZFS  is  expected  to 
be  included  in  a  January  release. 

Sun  is  not  expected  this  week  to 
release  the  much-anticipated 
open  source  version  of  Solaris. 

However,  the  company  is  ex¬ 
pected  to  begin  offering  Solaris 
on  an  annual  subscription  basis. 

Sun  also  is  enhancing  its  Stor- 
Edge  5310  NAS  Appliance,  which 
scales  to  16T  bytes  and  has  dual 
controllers  for  extra  performance 
and  availability  It  supports  the 
Unix/Linux  Network  File  System 
and  the  Windows  Common  Inter¬ 
net  File  System,  and  remote  mon¬ 
itoring  and  clustering.  It  also  fea¬ 
tures  Serial  Advanced  Technol¬ 
ogy  Attachment  (ATA)  drives  or 
Fibre  Channel  drives. 

The  company  also  is  introduc¬ 
ing  the  StorEdge  6130  Array  a 
Fibre  Channel  storage  system 
designed  for  data  from  ERR  data¬ 
base  or  e-mail  applications.  The 
6130  features  snapshot  backup 
and  volume  copy  capability  It 
scales  to  more  than  4  IT  bytes 
and  also  uses  Serial  ATA  drives. 

Sun  is  expected  to  announce 
the  StorEdge  Compliance  Archiv¬ 
ing  Software,  which  businesses 
can  use  to  archive,  protect  and 
retrieve  fixed  content  informa¬ 
tion  on  the  StorEdge  5310  NAS 
Appliance.  The  software  lets  that 
data  be  migrated  between  expen¬ 
sive  Fibre  Channel  drives  and  less 
expensive  Serial  ATA  drives  as  it 
becomes  less  important. 

The  company  also  is  rolling  out 
the  StorEdge  Enterprise  Storage 
Manager  Advanced  Applications 
software,  which  provides  a  plat¬ 
form  for  IT  to  manage  and  mon¬ 
itor  heterogeneous  storage  envi¬ 
ronments.  The  software  helps 
eliminate  manual  processes. 

McMillan  is  a  correspondent 
with  IDG  News  Service. 


Desktop  search  engines 
threaten  SSL  VPN  security 


■  BY  TIM  GREENE 

New  PC  indexing  tools  such  as  Google  Desktop 
Search  pose  security  risks  to  businesses  that  use  SSL 
remote  access  because  the  tools  copy  material  ac¬ 
cessed  during  SSL  sessions  and  make  it  available  to 
unauthorized  people  who  later  use  the  same  PC. 

Caches  created  by  PC  search  tools  get  around 
security  many  SSL  vendors  have  put  in  place  to 
purge  cached  data  from  remote  machines  as  secure 
sessions  shut  down. These  so-called  cache-cleaning 
agents  wipe  out  temporary  files  created  during  SSL 
sessions, but  they  don’t  wipe  out  the  copies  made  by 
the  search  tools. 

“You  could  end  up  caching  and  indexing  files  you 
don’t  want  cached  and  indexed  on  machines  out¬ 
side  your  control,”  says  Dan  Harman,  remote  access 
administrator  for  real  estate  developer  Lewis  Group 
in  Upland, Calif.,  which  uses  SSL  remote-access  gear 
made  by  Whale  Communications. 

One  touted  benefit  of  SSL  remote-access  technol¬ 
ogy  is  that  any  machine  with  a  Web  browser  can  be 
used  to  access  a  corporate  network  securely  The 
downside  is  that  the  PCs  might  not  be  owned  by  the 
corporation,  so  any  number  of  unauthorized  users 
could  have  access  to  them.  “This  tends  to  negate 
user  authentication,”  says  Rick  Fleming,  CTO  of 
Digital  Defense, a  vulnerability  assessment  company. 

Besides  Google’s  product, such  search  engines  are 
made  by  Blinkx,Copernic,lSYS  Search  Software  and 
XI  Yahoo  and  Microsoft  are  said  to  be  on  the  verge 
of  having  them,  too. 

SSL  VPN  vendor  Aventail  says  its  Secure  Desktop,  a 
•  irtual  desktop  for  SSL  sessions  that  is  destroyed 
when  the  session  closes,  prevents  files  downloaded 


during  the  session  from  being  viewed  by  Google 
Desktop  Search.  Juniper  says  it  can  do  something 
similar  in  partnership  with  Sygate. 

To  solve  the  problem  for  its  customers,  Whale  has 
a  software  upgrade  that  detects  whether  Google 
Desktop  Search  is  running  on  a  remote  PC.  If  so, 
access  to  the  corporate  network  is  denied  or  restrict¬ 
ed. The  company  is  developing  similar  upgrades  to 
address  nine  other  desktop  search  engines,  says 
Whale  CTO  Noam  Ben-Yochanan. 

Google  Desktop  Search  makes  it  easier  to  find  data 
on  PC  hard  drives  and  doesn’t  address  these  security 
concerns,  a  Google  spokesman  says.  Customers  can 
manually  turn  off  Desktop  Search  or  put  it  on  pause 
during  SSL  remote-access  sessions  to  avoid  having 
the  sessions  cached  by  the  search  engine,  he  says. 

Ben-Yochanan  says  he  installed  Google  Desktop 
Search  on  a  PC,  opened  an  e-mail  attachment, 
altered  the  document,  sent  it  as  an  attachment  then 
deleted  the  file  from  the  hard  drive.  Desktop  Search 
retained  a  copy  of  the  original  attachment  and  the 
modified  version. 

Fleming  says  such  tools  pose  similar  threats  to 
shared  PCs  on  corporate  LANs.  So  a  person  working 
the  4  p.m.-to-midnight  shift  could  access  all  the  data 
accessed  by  the  person  working  the  8  a.m.-to-4  p.m. 
shift,  including  personal  human  resources  data  or 
Internet  banking  information,  he  says. 

Similarly  if  a  network  administrator  uses  a  random 
desktop  to  reconfigure  a  firewall,  a  desktop  search 
engine  will  record  those  settings  and  the  password 
used  to  gain  access,  Fleming  says. 

It  also  makes  it  easier  for  attackers  to  search 
machines  they  have  taken  over,  says  Fred  Felman, 
vice  president  of  marketing  for  Zone  Labs.  ■ 
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.Net  at  a  glance 

•  More  than  4.9  million  .net  names  sold. 

•  58%  of  the  world's  DNS  hosts  run  on  .net  names. 

•  40%  of  .gov  domains  —  including  NSA.gov  and 
FEMA.gov  —  are  supported  by  one  or  more  .net 
name  servers. 

•  25%  of  other  registered  domain  names  —  such 
as  Amazon.com  andWalmart.com  —  point  to  .net 
name  servers. 

•  ISPs,  including  Comcast,  EarthLink  and  NetZero, 
use  .net  domain  forWebmail  services. 


SOURCE:  VERISIGN 


Largest  dependent  .com  domains 
(using  one  or  more  .net  name  servers) 


1.  msn.com 

6.  msnbc.com 

2.  amazon.com 

7.  monster.com 

3.  passport.com 

8.  sportsline.com 

4.  microsoft.com 

9.  ticketmaster.com 

5.  match.com 

10.  walmart.com 

Largest  .net  domains 

1.  earthlink.net  4.  att.net 

2.  comcast.net 

5.  bellsouth.net 

3.  passport.net 

SOURCE:  NEILSEN  NETRATINGS 

Domains 
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deletions  and  changes  to  that 
information. 

The  Internet  Corporation  for 
Assigned  Names  and  Numbers 
(ICANN)  will  select  a  contractor 
to  operate  the  .net  registry  before 
VeriSign’s  contract  expires  in 
June.  ICANN  is  expected  to  re 
lease  an  RFP  any  day  now,  with 
bids  due  in  early  January  and  a 
winner  to  be  selected  in  March. 

The  .net  competition  is  ex¬ 
pected  to  be  one  of  the  main  top¬ 
ics  of  discussion  at  ICANN’s  next 
meeting,  which  will  be  held  the 
first  week  of  December  in  Cape 
Town,  South  Africa. 

“Selecting  who  is  going  to  oper¬ 
ate  .net  is  the  most  important 
decision  ICANN’s  ever  had  to 
make,”  Galvin  says.  “No  matter 
who  runs  it,  the  bar  can’t  be  low¬ 
ered  because  of  the  importance 
of  .net  to  the  economy  and  to 
communications.” 

Already  the  .net  competition  is 
garnering  interest  in  the  network 
industry  Among  the  vendors  that 
have  publicly  endorsed  VeriSign’s 
bid  to  retain  the  .net  registry  are 


Microsoft,  Sun  and  Thomson 
Group.  Other  vendors  that  are 
tracking  the  .net  rebid  and  say  it  is 
critical  to  their  online  operations 
include  IBM,  Internap  and  MCI. 

“When  it  comes  to  .net,  things 
are  a  lot  more  interconnected 
than  you  might  expect,”  says  Paul 
Mockapetris,  inventor  of  the  DNS 
and  chairman  of  DNS  software 
vendor  Nominum.  “It’s  possible 
that  a  winner  could  bring  new 
innovations  to  .net, such  as  in  the 
area  of  security  that  might  then 
work  their  way  into  other 
domains.” 

Even  Congress  is  interested  in 
how  ICANN  selects  the  .net  reg¬ 
istry  Rep.  Chip  Pickering  (R-Miss.) 
has  sent  a  letter  to  the  Secretary 
of  the  Department  of  Commerce, 
which  oversees  ICANN,  request¬ 
ing  assurances  that  the  .net  pro¬ 
curement  will  be  held  in  a  fair 
and  open  manner. 

“I  have  been  told  that  a  failure 
of  .net  could  result  in  disruption 
of  33%  of  all  e-mail  traffic, a  loss  of 
$320,000  per  minute  in  e-com¬ 
merce  and  failures  across  every 
major  top-level  domain,  including 
such  popular  and  critical  appli¬ 
cations  as  whitehouse.gov,  black¬ 


berry  net  and  cybersecurity goy” 
Pickering  wrote.  “Therefore,  the 
structure  and  administration  of 
the  rebid  will  be  critical  to  the 
security  and  continuing  viability 
of  the  Internet.” 

VeriSign  is  pushing  to  retain  its 
.net  business,  which  brings  in 
about  $26  million  per  year,  or  2% 
of  its  overall  revenues,  according 
to  analysis  by  Legg  Mason. 

VeriSign  executives  are  pitching 
the  importance  of  the  .net  reg¬ 
istry  the  need  for  stability  in  .net 
operations  and  the  potential 


problems  that  a  transition  of  the 
.net  registry  could  cause.  The 
company  boasts  that  it  provides 
100%  uptime  with  .net  and  has 
withstood  many  hacker  attacks, 
including  a  potentially  devastat¬ 
ing  root  server  attack  in  2002. 

“Keeping  .net  is  important  for 
VeriSign,”  Galvin  says.  “We’ve 
done  a  great  job  of  running  it, 
and  we  know  it’s  important  to 
the  economy  and  to  communi¬ 
cations.  We  want  to  be  sure  it 
continues  to  run  at  the  highest 
levels  of  performance.” 

It’s  unclear  how  VeriSign’s  long- 
running  legal  battles  with  ICANN 
will  affect  its  chances  to  retain  the 
.net  registry  business.  Last  year, 
VeriSign  sued  ICANN  over  its  right 
to  introduce  a  new  service  called 
SiteFinder  that  directed  requests 
for  non-existent  .com  and  .net 
names  to  a  VeriSign  search  en¬ 
gine.  ICANN  prohibited  VeriSign 
from  deploying  SiteFinder  be¬ 
cause  it  interfered  with  some 
DNS  software. 

“ICANN  indicated  at  a  Senate 
hearing  a  month  ago  that  it  would 
hire  an  independent  third  party 
probably  an  accounting  firm,  to 
oversee  the  .net  competition,” 
Galvin  says.’That’s  a  good  sign  be¬ 
cause  it  gives  ICANN  more  credi¬ 
bility  It’s  good  to  know  there  will 
be  an  impartial  jury’ 

The  other  companies  bidding 
for  the  .net  registry  say  it’s  impor¬ 
tant  for  the  domain  name  indus¬ 
try  to  have  alternatives  to  VeriSign, 
which  was  the  first  and  for  many 
years  the  only  company  to  pro¬ 
vide  DNS  registry  services.  These 
companies  also  point  out  that 
other  domains  —  most  recently 
.org  —  have  been  successfully 
transitioned  from  VeriSign  to 
another  registry  without  failure. 

Afilias  says  performance  of  .org 
improved  when  back-end  opera¬ 
tions  migrated  from  VeriSign’s 
servers  to  its  servers. 

“It  used  to  take  12  hours  for  new 
names  and  changes  to  resolve  in 
.org.  Now  it  takes  several  sec¬ 


onds,”  says  Roland  LaPlante,  chief 
marketing  officer  for  Afilias.“Many 
of  the  registrants  in  .net  make 
changes  to  their  name  servers 
and  addresses  regularly  It  would 
be  a  dramatic  improvement  for 
them  to  see  changes  in  seconds 
rather  than  hours.” 

Rivals  say  VeriSign  has  been 
slow  to  introduce  new  capabili¬ 
ties  into  .net,  such  as  the  Ex¬ 
tensible  Provisioning  Protocol 
(EPP), a  standard  method  of  DNS 
registry  and  registrar  communica¬ 
tions  that  was  created  by  a  team 
including  VeriSign  engineers. 
Among  other  capabilities,  EPP 
provides  password  protection  for 
network  managers  to  make 
changes  to  domain  name  infor¬ 
mation  such  as  IP  addresses. 
Afilias  and  NeuLevel  run  EPP  on 
their  registries. 

“We  have  run  EPP  since  the  start 
of  .biz  and  .us,”  says  Richard 
Tindal,  vice  president  of  registry 
services  for  NeuLevel.  “We’ve 
done  dynamic,  real-time  updates 
right  from  the  start,  too.  Our  inten¬ 
tion  would  be  to  do  that  in  .net.” 

Despite  the  new  capabilities 
rolled  out  by  NeuLevel  and 
Afilias,  many  ICANN  observers 
say  VeriSign  is  likely  to  win  the 
.net  contract  again. 

“For  anyone  other  than  VeriSign, 
this  is  an  incredible  longshot,” 
says  Bret  Fausett,  author  of  the 
popular  ICANN  blog  and  a  part¬ 
ner  with  Hancock,  Rothert  and 
Bunshoft  in  Los  Angeles.  Fausett 
points  out  that  VeriSign  already 
operates  a  more  robust  registry 
infrastructure  than  any  other 
company  in  the  domain  name 
industry  and  has  the  incumbent 
advantage. 

“ICANN  is  going  to  have  to  have 
a  compelling  reason  for  moving 
the  registry,  because  of  the  costs 
associated  with  that  and  the  risks 
involved,”  Fausett  adds.“At  the  end 
of  the  dayl  think  that’s  unlikely’H 
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Wireless  sampler 

Vendors  are  rolling  out  a  host  of  new  wireless  LAN  hardware  and  software. 


Vendor 

What’s  new 

Aruba 

A  new  central  controllers  to  monitor,  authenticate  and  secure  wired  and  wireless  clients. 

Cisco 

Access  points  with  802. 11g  and  802.11a  radios  that  run  at  the  same  time. 

Network 

Chemistry 

Programs  added  to  its  intrusion-detection  software  to  break  unauthorized  WLAN 
connections  and  identify  interference. 

Symbol 

Access  point  with  802.1 1  g  and  802.11a  radios  and  WLAN  switch  software  with  AES 
encryption,  IPSecVPN  support  and  improved  RF  monitoring. 

WLAN 

continued  from  page  8 

that  tunnel  traffic  to  the  controller  for  processing.The 
new  2E  Grid  Point  is  for  connecting  wired  clients  into 
the  Aruba  controllers  for  security  The  PC  plugs  into 
the  grid  point,  which  connects  to  the  Ethernet  LAN. 
Aruba  expects  these  to  be  used  first  to  secure  Ether¬ 
net  ports  in  conference  rooms  and  other  open  areas. 

The  company  plans  to  ship  these  in  early  2005. 

Better  control  over  the  radio  waves  is  the  focus  of 
new  software  from  Network  Chemistry  a  company 
founded  in  2002  to  create  an  intrusion-protection 
system  called  RFprotect  Enterprise  for  WLANs. 
Radio  sensors  monitor  all  transmissions  and  funnel 
information  back  to  server-based  programs  for 
analysis  and  alerting. 

“We  looked  at  several  products  but  most  of  them 
just  sniffed  [wireless]  packets  and  reported  this  data 
back,”  says  Josh  Anderson,  a  security  analyst  with  a 
Fortune  500  utility,  and  a  Network  Chemistry  user. 

Network  Chemistry  went  to  a  deeper  level.  They 
can  say ‘this  traffic  pattern  shows  a  spe¬ 
cific  vulnerability  or  attack.’  They’ve 
turned  these  patterns  into  events  and 


made  them  easily  identifiable.” 

RFshield  is  a  new  program  that  can  disconnect  or 
block  unauthorized  WLAN  connections.  In  effect,  it 
launches  a  denial-of-service  attack  against  such  con¬ 
nections  but  without  disrupting  legitimate  users. 

Also  added  to  RFprotect  is  RFanalysis,  which  com¬ 
pares  wireless  packet  performance  with  measured 
radio  signals  and  other  electromagnetic  noise.  The 
data  can  be  used  to  detect  interference,  and  identify 
a  range  of  performance  problems  such  as  intermit¬ 
tent  cross-talk  between  channels. 

RFprotect  3.1,  with  both  new  modules,  starts  at 
about  $1,200.  The  RF  sensors  cost  $600  apiece. 

Intrusion  prevention  is  one  of  the  hottest  WLAN 
topics  as  archrival  AirDefense  recently  extended  its 
product  line.  And  Cisco,  which  has  been  outpaced 
by  these  start-ups,  now  is  improving  its  capabilities 
by  announcing  an  integration  deal  with  AirDefense. 

The  companies  are  writing  code  so  that  the 
AirDefense  application  will  be  able  to  use  Cisco’s 
Aironet  access  points  to  scan  the  radio  band  for 
rogue  wireless  devices  and  be  accessible  by  the 

Get  more  information  online.  Wireless  Solution  En8ine'a  Cisco 
DocFinder:  4648  management  platform.This  interoper- 
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Vendors  uncrate  single  sign-on  software 


■  BY  ELLEN  MESSMER 

Imprivata  and  RSA  Security  each  an¬ 
nounced  client/server  products  this  week 
for  bringing  single  sign-on  authentication 
to  corporate  networks. 

With  OneSign  2.6  software,  Imprivata 
adds  a  way  for  the  network  administrator 
to  allow  one  password  to  be  used  to  auth¬ 
enticate  access  to  multiple  applications 
that  each  require  a  separate  password.  A 
new  feature  checks  to  make  sure  users 
aren’t  sharing  passwords  when  they 
shouldn’t  be. 

RSA  Security’s  Sign-On  Manager,  expect¬ 
ed  to  ship  at  the  end  of  this  month,  also 
provides  single  sign-on  capability  so  the 
user  doesn’t  have  to  remember  multiple 
passwords,  but  extends  that  single  sign-on 
support  to  include  RSAs  SecurlD  dynamic- 
password  tokens  and  public-key  certifi¬ 


cates,  which  are  more  secure  than  simple 
passwords. 

The  RSA  Security  SSO  server  runs  on 
either  Windows  2003  or  Solaris,  while  the 
Imprivata  server  ships  in  the  form  of  a 
Linux-based  appliance. 

Other  vendors  offering  single  sign-on 
client/server  products  include  Computer 
Associates  and  Protocom  Development 
Systems. 

Laughlin  Memorial  Hospital  in  Green¬ 
ville,  Tenn.,  uses  Imprivata  OneSign  to  en¬ 
able  single  sign-on  for  20  applications  for 
about  1 ,000  doctors  and  staff  members. 

“Healthcare  regulations  now  require 
authentication  for  all  applications,  and  this 
is  a  way  we  can  centralize  the  network 
account  so  [medical  staff]  can  get  into  all 
their  applications  for  medical  information 
on  patients,”  says  Eric  Garrison,  network 
administrator  at  the  hospital. 


IHL  best  practices  gain 
growing  interest:  survey 


■  BY  DENISE  DUBIE 

Interest  in  and  adoption  of  the  IT  service 
management  best  practices  outlined  by 
the  Information  Technology  Infrastructure 
Library  continue  to  grow,  according  to  a 
recent  survey  which  shows  the  framework 
second  only  to  in-house  practices  as  the 
method  used  most  often  to  manage  IT  ser¬ 
vice  processes. 

While  about  60%  of  195  IT  managers  sur¬ 
veyed  by  network  consultancy  Interna¬ 
tional  Network  Services  (INS)  depend  on 
homegrown  practices  to  track  service 
management,  the  balance  have  adopted 
approaches  laid  out  in  ITIL,  coupled  with 
their  own  practices,  and  technology  stan¬ 
dards  such  as  FCAPS  (which  stands  for 
fault,  configuration,  accounting  or  asset, 
performance  and  security  management). 
Of  those  using  ITIL,  86%  say  the  framework 
is  critical  to  achieving  process  manage¬ 
ment  goals. 

“Many  IT  processes  are  repeatable  and 
adaptable  to  a  number  of  environments,” 
says  Andrew  Terranova,  principal  consul¬ 
tant  covering  network  and  systems  man¬ 
agement  at  INS. 

Among  the  drivers  for  adopting  best  prac¬ 
tices  are  ensuring  the  delivery  of  IT  ser¬ 
vices,  with  75%  listing  that  as  the  top  priori¬ 
ty  and  measuring  how  well  they  are  sup¬ 
ported,  which  ranked  second  with  67%. 
Other  reasons  include  implementing  a  ser¬ 
vice  quality  framework  and  aligning  IT 
management  with  business  objectives. 

IT  service  management  incorporates  sev¬ 
eral  management  disciplines,  such  as 
change, service-level  or  configuration  man¬ 
agement.  The  ITIL  framework  consists  of  a 
set  of  guidelines  IT  departments  could  fol- 
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ITIL  status 

A  majority  of  IT  professionals 
surveyed  say  ITIL’s  management 
best  practices  are  critical  to 
adoption  of  IT  service 
management  processes. 


Respondents:  76  (includes  only 
organizations  currently  using  ITIL) 

SOURCE:  INTERNATIONAL  NETWORK  SERVICES, 

NOVEMBER  2004 
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low  to  perform  incident, change,  configura¬ 
tion  and  problem  management,  and  about 
a  dozen  other  IT  disciplines.  ITIL  helps  net¬ 
work  managers  set  processes  and  better 
document  IT  actions  for  audits. 

Developed  in  the  U.K.more  than  10  years 
ago,  ITIL  didn’t  achieve  overnight  success 
in  the  U.S.  Now  under  the  watch  of  the  IT 
Service  Management  Forum,  with  branch¬ 
es  across  the  U.S.,  ITIL  is  spreading. 

The  INS  survey  also  showed  that  more 
than  80%  of  companies  polled  are  at  least 
aware  of  ITIL,  with  about  one-quarter  say¬ 
ing  they  understand  the  framework  at  both 
a  conceptual  and  detail  level.  And  of  those 
companies  not  using  ITIL,  just  over  half 
plan  to  adopt  it,  with  about  20%  intending 
to  do  so  in  the  next  six  months.  ■ 


According  to  Seamus  Reynolds,  who  is 
also  a  network  administrator  at  Laughlin, 
the  hospital  has  set  up  two  OneSign  appli¬ 
ances  so  that  they  mirror  each  other  in  the 


event  one  fails. 

Imprivata  OneSign  starts  at  about  $16,000 
for  200  users.  RSA  Security’s  Sign-On 
Manager  costs  $70  per  user.  ■ 


WHEN  YOU  DECIDE 
ON  THE  SERVICE,  THIS  LOGO 
WILL  HELP  YOU  DECIDE 
ON  A  PROVIDER. 


Rill  Cisco 

Powered 


Make  sure  you  get  the  latest  in  network  services  by  looking 
for  the  Cisco  Powered  logo.  From  managed  business  voice 
to  managed  security  and  virtual  private  networks,  this  logo 
means  the  service  is  delivered  over  a  network  built  end  to  end 
with  Cisco  equipment  -  which  meets  the  highest  standards  for 
performance  and  reliability. 

To  find  a  Cisco  recommended  service  provider,  or  download 
the  Cisco  Guide  to  Buying  Managed  Network  Services 
go  to  cisco.com/go/cpnnowl 


Cisco  Systems 

THIS  IS  THE  POWER  OF  THE  NETWORK,  now. 

©  2004  Cisco  Systems,  Inc.  All  rights  reserved. 


NAME 


Mr.  500  Servers 
in  156  Countries 
Managed  from 
1  Location 


Department  of 
Foreign  Affairs, 
Switzerland 


"We  have  3,000  PCs  based  everywhere  from 
Argentina  to  Vietnam,  and  now  our  team  can 
update  them  all  from  headquarters." 

Viktor  Portmann 

Project  Manager,  Department  of  Foreign  Affairs,  Switzerland 


Make  a  name  for  yourself  with  Windows  Server  System. 

Microsoft  Windows  Server  System  makes  it  easier  for 
Switzerland's  Federal  Department  of  Foreign  Affairs 
(DFA)  to  manage  the  infrastructure  serving  their 
embassies  and  consulates  in  156  countries.  Here's 
how:  By  using  Systems  Management  Server  2003 
and  Microsoft  Operations  Manager  2005,  DFA  can 
automatically  update  its  500  remote  servers  from  a 
central  location,  saving  over  $600,000  in  travel 
expenses  alone  in  the  past  year.  They've  also  been 
able  to  reduce  the  time  and  cost  of  maintenance, 
boost  user  productivity,  and  find  the  time  to  better 
prepare  for  expansion.  Software  that's  easier  to 
manage  is  software  that  helps  you  do  more  with 
less.  To  get  the  full  DFA  story  or  to  find  a  Microsoft 
Certified  Partner,  go  to  microsoft.com/wssystem 


Windows 
Server  System 


Windows  Server  System’”  includes: 


Server  Platform  Windows  Server™ 


Virtualization 

Virtual  Server 

Data  Management  &  Analysis 

SQL  Server™ 

Communications 

Exchange  Server 

Portals  &  Collaboration 

Office  SharePoint'  Portal  Server 

Integration 

BizTalk*  Server 

Management 

Systems  Management  Server 

Microsoft'  Operations  Manager 

Security 

Internet  Security  &  Acceleration  Server 

Plus  other  software  products 
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Sarvega  releases  new  XML  processing  blade 


■  BY  JOHN  FONTANA 

Sarvega  this  week  will  push  its  XML  accel¬ 
eration  technology  deeper  into  the  realm 


of  blade  architectures,  providing  users  with 
an  innovative  option  for  deploying  Web 
services  infrastructure. 

Sarvega  has  validated  its  XML  Speedway 


Accelerator  for  use  on  the  Egenera  Blade- 
Frame  System,  which  has  become  popular 
with  financial  service  firms  and  govern¬ 
ment  agencies.  Sarvega  says  it  hopes  the 


blade  will  catch  on  with  companies  that 
have  shown  affinity  for  the  rack-mounted 
commodity  hardware  form  factor. 

The  Speedway  blade  also  is  notable  in 
that  Sarvega’s  competitors  —  Actional, 
DataPower,  Forum  Systems  and  Reactivity 
—  do  not  offer  XML  performance  wares  in 
a  blade  format.  In  December,  Sarvega  intro¬ 
duced  the  XRE  200,  the  first  XML  accelera¬ 
tion  blade.  The  XRE  200  is  compatible  with 
IBM  and  HP  blade  architectures. 


Blades  on  the  rise 

IDC  expects  blades  to  account 
for 

20% 

of  server  units  shipped  by  2006 
—  up  from  4%  in  2003. 


Speedway  delivers  XML  processing  at  up 
to  1G  bit/sec,  and  performs  XML  transfor¬ 
mation  and  schema  validation  services. 
Speedway  features  Sarvega’s  XML  Event- 
Stream  Operating  System  (XESOS)  operat¬ 
ing  system,  which  has  been  modified  to  run 
atop  Red  Hat  Linux  on  the  Egenera  blade. 
With  the  XRE  200,  XESOS  runs  as  the  pri¬ 
mary  operating  system. 

“This  blade  is  compelling.  DataPower 
can’t  do  it  because  they  have  their  own 
chipset,  and  other  companies  can’t  do  it 
because  they  don’t  have  the  [operating  sys¬ 
tem]  approach  of  Sarvega,”  says  Ron 
Schmelzer,  an  analyst  at  ZapThink.  “It’s 
unique  on  the  market.  It  will  cause  a  lot  of 
people  to  think  about  the  blade  approach 
for  XML  processing.”  Schmelzer  says  the 
benefit  with  blades  is  that  users  can  have  a 
rack  of  them  and  designate  any  number  for 
XML  processing  as  demand  dictates.“What 
is  valuable  is  the  notion  of  dynamic  provi¬ 
sioning,”  he  says. 

Sarvega  has  integrated  Speedway  with 
Egenera’s  Processing  Area  Manager  man¬ 
agement  console,  which  supports  the  dy¬ 
namic  provisioning  of  resources  among  the 
blades  in  the  Egenera  BladeFrame  chassis. 
The  chassis  can  hold  up  to  24  two-way  or 
four-way  blades.  It  also  features  redundant 
central  controllers,  redundant  integrated 
switches,  redundant  high-speed  inter¬ 
connects  and  a  2.4G  bit/sec  backplane. 

“One  of  the  problems  that  come  with  an 
ASIC  solution  is  that  as  standards  change 
and  needs  change  you  are  looking  at  a  full 
forklift  upgrade,”  says  Girish  Juneja,  co¬ 
founder  and  senior  vice  president  of  prod¬ 
uct  management  at  Sarvega.  “There  are 
places  where  appliances  work  just  fine,  but 
we  are  seeing  in  the  data  center  that  they 
are  moving  away  from  that  model.” 

Experts  say  Sarvega  is  combining  the 
benefits  of  dedicated,  Intel-based  hardware 
with  the  benefits  of  software  deployments. 

The  XML  Speedway  Accelerator  on  the 
Egenera  blade  starts  at  $20,000.  ■ 
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Test  More.  Wait  Less. 

The  Media  Cross-Connect  from  MRV  is  the 
most  intelligent  and  flexible  digital  patch  panel 
available  today.  Addressing  the  challenges  of 
test  &  simulation  labs  everywhere,  the  Media 
Cross-Connect  automates  and  streamlines  the 
sharing  and  reconfiguring  of  test  equipment.  It 
provides  total  control  over  the  entire  test  lab 
infrastructure. 


miARV 


•  Alter  connections  at  any  time  without 
moving  cables 

•  Automate  testing  to  maximize  time  and 
resources 

•  Flexible  Interfaces  -  SFP,  RJ-45  and  XFP 
in  one  chassis 

•  Wide  Protocol  Range  -  Support  for  any 
protocol  from  DC  to  4.25  Gbps,  and  10  Gig 

•  High  Density  -  144  data  ports  in  only  5U 

•  Linux-based  Management 


www.mrv.com/nyv 
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U/NO'S  GONNA 
TAK£  TH£  L£AV 
ON  SCOURING  T«£ 
NETWORK? 


PICK  M6. 
{fORRE^TER  PIP.) 


New!  Matrix  "  X-Series 
Secure  Core  Router 

With  Terabit-speed  performance 
and  a  rich  feature  set.  the 
Matrix  X-Series  extends  our 
security  leadership  from  the 
edge  to  the  core.  Learn  more  at 
enlerasys.  com/x-series. 
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Networks  that  Know 


Securing  today’s  networks  is  a  tough  job.  Not  every  vendor  is  prepared  to  step  up  and  meet  your  strict  requirements 
(despite  their  claims  to  the  contrary).  Then  there’s  Enterasys.  Our  unique  Secure  Networks  solutions  embed  security 
intelligence  throughout  the  infrastructure.  This  means  that  wherever  a  threat  occurs,  you  can  identify  and  contain  it 
right  on  the  spot,  without  ever  impeding  critical  business  operations. 

How  far  ahead  are  we?  Forrester  Research  just  named  Enterasys  the  “elear  market  leader”  in  switch-based 
netw'ork  security,  ahead  of  Cisco,  Nortel,  Extreme  and  others. 

Don’t  leave  your  security  to  chance.  Find  out  why  more  and  more  enterprise  customers  like  you  are  picking  Enterasys; 
call  877-423-8074.  To  download  the  complete  Forrester  Wave™  Report,  go  to  enterasys.com/niarketleader. 
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Just  because  you  are  in  the  field 
doesn't  mean  you  are  out  of  touch 


When  you’re  out  in  the  field,  you  don't  want  to  be  out  of  touch.  That's  where  the  BlackBerry  Enterprise 
Solution  comes  in.  This  solution  offers  you  secure,  wireless  access  to  your  dispatch  and  scheduling 
systems,  automation  applications  and  even  parts  inventory.  Wirelessly  receive,  review  and  close  service 
tickets  wherever  you  happen  to  be.  And  you  can  even  look  upthe  latest  service  trends,  repair  workarounds 
and  product  bulletins.*  The  result  is  less  time  away  from  the  field  and  most  importantly,  better  customer 
service.  It's  not  just  a  better  way  to  work  in  the  field.  It's  a  better  way  to  serve  your  customers. 


More  Than  Wireless  E-mail 
Order  the  BlackBerry  Extensibility  Kit  to  find 
out  how  you  can  improve  your  service  team's 
effectiveness  and  efficiency  in  the  field. 

Visit:  www.blackberry.com/go/xkit 


Get  your  "BlackBerry 
Extensibility  Kit" 
Today! 


BlackBerry 


©2004''Rvsearch  In  Motion  Limited  (flIM).  All  rights  reserved.  BlackBerry  is  an  end-to-end  wireless  solution  developed  by  RIM.  The  RIM  and  BlackBerry  families  of  related  marks,  images  and  symbols  are  the  exclusive  properties  and  trademarks  of  RIM  RIM,  Research  In  Motion, 
Afwajp  Or..  A'wayi  Connected/BlackBerry  and  the  BlackBerry  logo  are  registered  with  the  U.S.  Patent  and  Trademark  Office  and  may  be  pending  or  registered  in  other  countries  Do  not  use  your  wireless  handheld  while  performing  dangerous  work.  'Check  with  service  provider 
for  availability,  roaming  arrangements  and  service  plans  Certain  features  outlined  in  this  document  require  a  minimum  version  of  BlackBerry  Enterprise  Server  Software,  BlackBerry  Desktop  Software,  and/or  BlackBerry  Handheld  Software  and  may  require  additional  development 


Irfy* products  and.  O'  servicei'for  access  to  corporate  applications  Prior  to  subscribing  to  or  implementing  any  third  party  products  and  services,  it  is  your  responsibility  to  ensure  that  the  airtime  service  provider  you  are  working  with  has  agreed  to  suppod  all  of  the 
f  ‘the  third  party  products  and  services.  Installation  and  use  of  third  party  products  and  services  with  RIM's  products  and  services  may  requue  one  or  more  patent,  trademark  or  copyright  licenses  in  order  to  avoid  infringement  of  the  intellectual  property  rights  of 
a  are  solely  responsible  for  determining  whether  such  third  party  licenses  are  required  and  are  responsible  for  acquiring  any  such  licenses.  To  the  extent  that  such  intellectual  property  licenses  may  be  required,  RIM  expressly  recommends  that  you  do  not  install  or  use 
Idct}  and  services  until  ail  such  applic  able  licenses  have  been  acquired  by  you  or  on  your  behalf  Vour  use  of  third  party  software  shall  be  governed  by  and  subject  to  you  agreeing  to  the  terms  of  separate  software  licenses,  if  any,  for  those  products  or  services.  Any 
flprodgcts  or  services  that  ar# provided  with  RIM's  products  and  services  aie  provided  “as  is'  RIM  makes  no  representation,  warranty  or  guarantee  whatsoever  in  relation  to  the  third  party  products  or  services  and  RIM  assumes  no  liability  whatsoever  in  relation  to  the 
I  prapucts-  andaervites  even-ifRIM  has  been  advised  of  the  possibility  of  such  damages  or  can  anticipate  such  damages 
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■  SECURITY  ■  SWITCHING  ■  ROUTING 

■  VPNS  ■  BANDWIDTH  MANAGEMENT 

■  VOIP  ■  WIRELESS  LANS 


■  Nokia  SSL  remote-access  custom¬ 
ers  now  can  make  network-layer  con¬ 
nections  to  corporate  resources  over 
the  Internet,  but  this  new  capability 
comes  at  an  administrative  price. 

With  the  latest  version  of  Nokia’s 
Secure  Access  System  software, 
the  company  is  introducing  the  Se¬ 
cure  Connector  client,  which  is  free, 
but  users  must  distribute,  configure 
and  maintain  the  clients.  Until  now 
Nokia  SAS  customers  had  only  the 
option  of  using  a  Web  browser  as  a 
remote  client,  making  it  unnecessary 
to  install  a  separate  client.  The  down¬ 
side  was  that  remote  users  could 
access  Web-based  applications  and  a 
finite  set  of  other  applications.  Net¬ 
work-layer  access  lets  remote  users 
reach  whatever  resources  they  need 
when  working  from  a  LAN-attached 
computer.  The  new  Nokia  SAS  3.0 
client  ensures  that  the  remote  mach¬ 
ine  has  anti-virus  software  running 
and  quarantines  sessions  when  virus 
activity  is  detected.  Secure  Connec¬ 
tor  supports  Windows  NT  4,  2000  and 
XP,  and  comes  standard  with  new 
Nokia  IP  series  security  appliances. 

■  Foundry  Networks  recently  added 
global  server  load  balancing  and  DNS 
redirection  capabilities  to  its  Server- 
IronGT  E-series.  The  Server! ronGT 
is  a  multipurpose  Layer  4-7  appliance 
for  large  data  centers  and  Web  farms. 
The  upgrade  lets  a  Serverl ronGT 
appliance  balance  Web  traffic  across 
the  Internet  to  servers  spread  out 
across  multiple  sites.  Server  health 
monitoring,  traffic  congestion  sensing 
and  DNS  attack  prevention  are  also 
included.  The  global  load-balancing 
upgrade  for  the  ServerlronGT  costs 
$4,000.  The  ServerlronGT  hardware 
ranges  from  $16,000  to  $45,000. 

■  Cyber-Ark,  which  makes  the  Net¬ 
work  Vault  for  centralized,  secure  ac¬ 
cess  to  passwords,  has  announced  a 
feature  called  Central  Password 

Manager  that  ensures  passwords  for 
remote  machines  are  periodically 
changed  and  then  stored  in  the  Vault 
appliance.  Password  Vault  starts  at 
$50,000. 


■  BY  PHIL  HOCHMUTH 

Big  companies  that  make  big  prod¬ 
ucts  —  the  GMs,  Dows  and  Boe¬ 
ings  of  the  world  —  have  worked 
for  years  toward  better  factory 
and  back-office  integration.  But  even 
smaller  manufacturers  are  following 
this  trend. 

Lifetime  Products  in  Clearfield,  Utah, 
manufactures  equipment  for  home 
basketball  courts,  as  well  as  other 
sporting  goods  and  furniture  items, 
such  as  folding  metal  tables  and 
chairs.  The  firm  is  no  giant,  with  less 
than  1,200  employees  in  Utah  and  one 
plant  in  China.  But  the  company  is  tak- 


■  BY  JOHN  COX 

Setting  up  temporary  wireless  LAN 
Internet  access  for  visitors  to  your  offices 
is  an  administrative  headache  and  a  secu¬ 
rity  nightmare. 

Sesame  Networks  is  launching  in  the 
U.S.  a  subscriber  service,  with  some  on¬ 
site  hardware,  to  automatically  provision 
visitors  and  guests  with  WLAN  access  to 
the  Internet.  It’s  like  creating  your  own 
WLAN  hot  spot  outside  the  corporate  fire¬ 
wall,  without  any  work  on  the  part  of  net¬ 
work  IT  staff. 

Sesame  works  like  this:  A  business  part¬ 
ner  visiting  a  corporate  location  opens 
his  wireless  notebook  PC,  which  connects 
to  a  Sesame  access  point  and  then  to  a 
Sesame  controller,  which  is  plugged  into 
the  Internet  access  router  at  your  site.The 
user  enters  his  cell  phone  number  and 
other  data,  which  the  controller  passes  on 
via  the  Internet  to  an  application  at 
Sesame’s  data  center.  The  application 
stores  the  user’s  identity  information,  cre¬ 
ates  a  unique  password  and  sends  this  to 
the  requesting  user’s  cell  phone  via  Short 
Message  Service  (SMS).  The  user  enters 
the  password  and  completes  the  logon  to 
access  the  Internet  or  start  up  a  VPN  client 
to  access  his  own  corporate  network. 


ing  on  some  high-end  network  tech¬ 
nologies  to  make  its  operations  as  effi¬ 
cient  as  possible.  These  include  the 
basics,  such  as  wiring  manufacturing 
gear  with  Ethernet,  and  extending  Wi¬ 
Fi,  RFID  and  other  newer  technologies 
to  the  factory  floor  and  warehouses. 

Lifetime  uses  a  variety  of  network 
technologies  to  tie  its  campus  of  27 
manufacturing,  warehouse  and  distribu¬ 
tion  facilities  to  its  data  center,  located 
in  an  office  adjacent  to  the  plants. 

Laser  cutters,  stamp  presses  and 
other  manufacturing  equipment  in  the 
factories  are  hooked  up  with  100M 
bit/sec  Ethernet,  which  lets  production 
managers  on  the  floor  access  CAD 


At  the  customer  site,  there  are  two  com¬ 
ponents  to  the  Sesame  network:  802. 1 1  b/g 
WLAN  access  points,  called  SesameSpots, 
which  plug  into  the  Sesame  Access 


images  over  the  LAN  and  transfer 
designs  to  machines  in  the  plants. 

This  beats  the  previous  sneaker-net 
method  of  transferring  CAD  files  to 
machines,  says  John  Bowden,  Life¬ 
time’s  CIO. 

“We  used  to  have  an  engineer  design  a 
part,  then  carry  the  plans  out  by 
floppy  disk  to  the  factor^’  he  says.  This 
created  long  paper  trails  “and  big  mess¬ 
es  of  floppy  disks.”  Hooking  the  factory 
floor  to  Ethernet  let  the  machines  link 
into  the  company’s  product  life-cycle 
management  (PLM)  system,  which  inte¬ 
grates  the  tracking  of  production  with 
the  CAD  and  other  systems. 

See  Lifetime,  page  28 


Manager  (SAM),  which  in  turn  attaches  to 
a  spare  port  on  a  corporate  router  used 
for  Internet  access.  Or  a  company  could 

See  Sesame,  page  28 


Lessons  from  leading  users 


net  brings  smarts  to  factory  floor 


Sesame  opens  up  wireless  guest  access 


HOW  IT  WORKS 


Open  Sesame 


Sesame  Networks  is  offering  a  package  that  lets 
remote  or  guest  users  gain  quick  and  secure  Internet 
access  without  accessing  the  corporate  WLAN. 


Visitor  with  wireless 
laptop  and  cell  phone 
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Firewall  and 

corporate 

network 
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©  User  starts  WLAN  link,  entering  ©  Sesame  data  center  creates  ID,  Q  User  completes  logon  for 

cell  phone  number  on  Sesame  sends  password  via  SMS  Internet  access,  never  touching 

logon  screen.  message  to  cell  phone.  corporate  LAN. 


YOU  MAY  NOT  HAVE  TIME  TO  STUDY 
THE  TCO  OF  WINDOWS  AND  LINUX( 
BUT  THE  YANKEE  GROUP  DOES. 


Microsoft 


", For  midsized  and  large  organizations,  a  significant 
Linux  deployment  will  neither  be  free  nor  easily 
accomplished.  In  fact,  respondents  at  large 
organizations  reported  that  a  wholesale  switch  to 
Linux  from  Windows *  or  Unix  would  significantly 
increase  TCO  for  the  forseeable  future 


-Laura  DiDio,  The  Yankee  Group,  April  2004 
Linux,  Unix,  and  Windows  TCO  Comparison 


The  Yankee  Group,  a  global  research  and  consulting  firm,  concluded  that 
a  significant  switch  to  Linux  from  Windows  or  Unix  could  cost  three  to  four 
times  as  much  without  delivering  tangibly  better  performance  or  business 
value.  These  findings  are  based  on  a  non-sponsored  worldwide  survey  of  1,000 
IT  administrators  and  C-level  executives  in  midsized  and  large  enterprises. 

To  get  the  full  study,  visit  microsoft.com/getthefacts 


Windows 
Server  System 


O  2004  MicrosoftCorporation.  All  rights  reserved  Microsoft,  Windows,  the  Windows  logo,  and  Windows  Server  System  are  either  registered  trademarks  or  trademarks  of  Microsoft 
Corporation  in  the  United  States  and/or  other  countries.  The  names  of  actual  companies  and  products  mentioned  herein  may  be  the  trademarks  of  their  respective  owners. 
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Lessons  from  Leading  Users 


Lifetime 

continued  from  page  25 


Wi-Fi  is  another  network  technology 
used  to  hook  into  bar-code  scanners 
in  the  plants  and  RFID  readers  on 
forklifts. 

"We ’re  also  moving  toward  what  they 
call  'slap-and-ship,’”  where  pallets  of 
products  are  “slapped”  with  RFID  tags 
that  contain  information  on  contents, 
shipping  instructions  and  other  data, 
Bowden  says. As  part  of  this  effort,  fork¬ 
lifts  are  being  outfitted  with  Wi-Fi- 
enabled  tablet  PCs  with  RFID  readers. 
When  a  forklift  moves  a  pallet,  the 
action  is  recorded  and  sent  to  the 
database  instantly,  eliminating  paper¬ 
work.  This  lets  the  company  move 
almost  twice  as  much  inventory  as 
before  with  fewer  people  over  a  short¬ 
er  time,  he  says. 

In  addition  to  making  its  own  inter¬ 
nal  operations  more  efficient,  RFID  is 
essential  to  Lifetime’s  relationship 
with  Wal-Mart,  which  has  a  corporate 
mandate  requiring  RFID  tags  from  all 
of  its  merchandise  suppliers,  Bowden 
adds. 

Lifetime  uses  PLM  software  from 
Prometric,  which  is  the  same  company 
that  supplies  the  firm’s  CAD  platform; 
these  systems  run  on  HP/Windows 
servers.  The  other  large  platform  in  the 
data  center  is  a  Foresight  ERP  system, 
which  run  on  HP-UX  servers.  All  of  Life¬ 
times  servers  connect  to  one  HP  9300 
series  switch  in  the  data  center  via 
Gigabit  links  and  muiti-Gigabit  trunks. 
Since  introducing  these  platforms  — 
which  digitize  many  transactions  that 
were  paper-based  before  —  the  firm’s 
data  has  grown  an  average  of  600M  bytes 
per  day 

“These  systems  manage  our  whole 
product  life  cycle  from  cradle  to  grave,” 
Bowden  says.  “We  can  track  a  product, 
from  an  idea  scratched  on  a  napkin 


All  connected 

Lifetime  Products  uses  wireless  and  wired  LAN  technology  to  tie  together  its  product  life- 
cycle  management  (PLM)  back  office,  factory  floor  and  warehouses. 


©  Servers  in  the  data  center  run  ERP  and  PLM 
systems,  which  control  product  manufacturing, 
from  design  to  shipping.  10G  Ethernet  links  the 
data  center  to  the  backbone  switch. 


©  Ethernet  hooks  machines  on  the  factory  floor  to 
the  brains  of  the  data  center  PLM.  Wi-Fi  in  the 
factory  updates  the  PLM  system,  tracking  products 
from  production  to  shipping. 


©  Wi-Fi  also  connects  RFID  readers  in  the  warehouse, 
updating  the  data  center  in  real  time. 


[which  can  be  stored  as  a  PDF  file]  all 
the  way  to  procuring  the  building  mate¬ 
rials,  to  how  that  product  is  being  built” 
and  shipped,  he  says. 

Moving  to  10G 

With  so  many  users  and  machines 
accessing  the  data  center,  Lifetime  is 
set  to  move  to  10G  Ethernet  technol¬ 
ogy  in  the  next  few  months.  Dual  10G 
bit/sec  pipes  will  connect  the  data  cen¬ 
ter  9300  switch  to  the  company’s  other 
9300  switch  in  the  core,  which  ties  to 
wiring  closets  in  the  main  office  and  in 
the  factories. 

In  touring  Lifetimes  data  center,  net¬ 
work  closets  or  plant  floors,  one  thing 
becomes  obvious,  Bowden  says  — 
Lifetime  is  not  a  fan  of  variety.  HP  sup¬ 


plies  all  IT  hardware;  from  PCs,  servers, 
tablets  and  PDAs  to  LAN  switches  and 
wireless  gear.  (A  Cisco  router  does  link 
the  firm  to  its  China  subsidiary) 

Bowden  says  he  likes  the  HP  network 
gear  because  all  the  products  have  a  life¬ 
time  warranty  plus  the  switches  are  less 
expensive  than  most  competing  enter¬ 
prise-class  products;  Synergy  Research 
Group  estimates  that  HP’s  average  per- 
port  switch  price  is  almost  half  the  indus¬ 
try  average.  Bowden  wouldn’t  say  what 
kind  of  discount  he  gets  from  HP  on  the 
LAN  gear. 

Buying  all  its  gear  from  HP  eliminates 
vendor  finger-pointing  when  network 
issues  arise,  Bowden  says.  Going  HP-only 
also  gives  Lifetime  more  cachet  with  the 
vendor. 


“1  feel  we  get  better  support  from  HP 
being  such  an  end-to-end  shop,”  Bowden 
says.  “We’re  not  that  big  a  company?’  he 
says,  but  the  company’s  deep  relation¬ 
ship  with  HP  gives  it  buying  leverage  and 
technical  support  on  a  level  many  larger 
firms  might  enjoy 

Bowden  admits  that  relying  on  one 
vendor  for  end-to-end  network  and  com¬ 
puting  products  has  some  drawbacks  — 
namely,  as  your  sole  vendor  goes, so  goes 
your  entire  network  support.  Bowden 
says  this  was  somewhat  of  an  issue  over 
the  last  few  years,  as  HP  sorted  itself  out 
after  its  Compaq  acquisition. 

“Now  that  the  merger  is  over  with, 
things  are  more  back  to  normal,”  he  says. 
“We  feel  like  we  have  one  company 
we’re  dealing  with  again.”  ■ 


Sesame 

continued  from  page  25 

buy  its  own  access  points  or  set 
up  a  separate  virtual  LAN 
(VLAN)  on  its  WLAN  solely  for 
visitor  use.  The  VLAN  funnels 
the  wireless  traffic  to  the  SAM. 

The  SAM  connects  via  the 
Internet  to  Web  and  identity 
servers  in  Sesame’s  data  center. 
These  servers  handle  registra¬ 
tion,  password  creation,  auth¬ 
entication  and  session 
management. 

Once  the  Sesame  hardware  is 
set  up,  visitors  simply  connect 
to  it  as  they  would  to  any  other 
WLAN,  by  opening  their  wire¬ 


less  notebooks  or  PDAs.  The 
SAM  pushes  to  these  clients  a 
Web  page,  which  can  bear  the 
logo  and  greeting  of  the  com¬ 
pany  being  visited.  The  Web 
page  prompts  the  visitor  to 
enter  his  cell  phone  number, 
and  click  “Get  password.” 

The  SAM  passes  this  informa¬ 
tion  back  to  the  Sesame  data 
center,  which  stores  it  along 
with  the  user’s  name,  media 
access  control  address  of  the 
client  device  and  the  IP  address 
of  the  SAM. 

The  data  center  creates  a 
Sesame  ID  and  password,  and 
hands  off  the  latter  in  the  form 
of  an  SMS  message  through  the 


visitor’s  cellular  carrier.  In  a  few 
seconds  the  message  arrives  on 
the  cell  phone.The  visitor  types 
in  the  password  on  the  Sesame 
screen  to  complete  registration 
and  logon. 

The  password  is  valid  for  30 
days  on  any  Sesame  network. 
When  the  visitor  logs  on  anoth¬ 
er  time,  Sesame  checks  the  user 
name  and  cell  phone  informa¬ 
tion.  It  tracks  session  informa¬ 
tion  each  time  the  visitor  logs 
on  via  a  SAM  at  any  location. 

The  hardware  price  is  about 
$1,500  for  the  Sesame  Access 
Manager  and  three  Sesame- 
Spots.  That  price  goes  up  with 
more  SesameSpots,  at  $360 


each,  and  larger  models  of  the 
SAM. 

The  yearly  subscription  fee  for 
this  small  system  would  be 
about  $1,200. That  fee  increases 
with '  the  number  of  access 
points.  Volume  discounts  are 
available. 

Sesame  Networks  was 
founded  in  February  2003,  with 
the  goal  of  creating  a  product 
for  simple, secure  guest  Internet 
access  for  enterprise  users.  The 
company  has  about  25  Cana¬ 
dian  customers,  and  the  com¬ 
pany  is  expanding  into  the  U.S. 
market. 

The  CEO  is  Tom  Hope,  for¬ 
merly  CTO  at  Bell  Canada, 


where  he  oversaw  the  compa¬ 
ny’s  rollout  of  high-speed  DSL 
Internet  services. 

Sesame  is  backed  by  Toll 
Cross  Investments  and  Travel- 
Net  Technologies,  which  offers 
the  DataValet  broadband 
access  services  found  in  a 
range  of  North  American 
hotels.  ■ 


tdDevi 


Wireless 

Computing 


vices 


Subscribe  to  our  free  newsletter. 
DocFinder:  5434  www.nwfusion.com 


The  Intel®  Itanium®  2  processor. 

It’s  all  about  performance. 

The  Intel  Itanium  2  processor  is 
engineered  for  data-intensive 

applications.  With  addressable  memory  up  to 
one  petabyte.  And  support  for  over  1,600 
of  today’s  leading  database  and  enterprise 
applications  and  tools.  All  at  reduced 
cost  over  RISC  solutions.  For  specs  and  case 
studies,  visit  intel.com/business. 


©2004  Intel  Corporation.  Intel,  Intel  Inside,  the  Intel  Inside  logo,  and  Itanium  are  trademarks  or  registered  trademarks  ol  Intel  Corporation  or  its  subsidiaries  in  the  United  States  and  other  countries.  All  rights  reserved. 


YOUR  COMPANY’S  FIREWALL 


Introducing  DuPont™  certified  limited  combustible  cable.  In  the  event  of  a  fire,  securing  your 
business’  uptime  is  crucial.  The  data  communications  cable  you  choose  could  play  a  key  role  in  protecting 
your  network  technology  investment.  DuPont' M  certified  cable  produces  20  times  less  smoke  than  other 
plenum  rated  cables.  And  less  smoke  means  less  costly  downtime,  making  it  the  most  advanced  fire 
safety  cable  technology  available  today.  To  learn  more  about  DuPont ™  certified  limited  combustible  cable 
or  to  request  a  free  CD,  log  on  to  teflon.com/cablingmaterials  or  call  i-8oo-20/-o/$6. 
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The  miracles  of  science™ 


Novell  bets  on  Linux  desktop  suite 


■  BY  DENI  CONNOR 

Novell  last  week  announced  its  Linux 
desktop  product,  an  offering  aimed  at 
technical  workstation  users  and  price- 
sensitive  customers  seeking  a  Windows 
alternative. 

The  Novell  Linux  Desktop  9  suite  con¬ 
sists  of  the  freely  downloadable  K  Desk¬ 
top  Environment  (KDE)  and  GNU  Net¬ 
work  Object  Model  Environment 
(GNOME)  desktop  interfaces,  Novell 
Evolution  e-mail, collaboration  and  calen¬ 
daring  software,  and  Novell’s  iFolder  soft¬ 
ware.  It  also  features  the  freely  download¬ 
able  Mozilla  FireFox  browser  and  a  spe¬ 
cially  tweaked  OpenOffice  suite  of  per¬ 
sonal  productivity  applications. 

Novell  Linux  Desktop  9  is  based  on  SuSE 
Enterprise  Linux  Server  9  and  the  Linux  2.6 
kernel.  It  also  incorporates  the  Citrix  ICA 
client  for  remote  access  to  applications. 

“We  are  not  telling  users  to  rip  and 
replace  Windows,”  says  Ted  Hager,  director 


■  In  a  bid  to  further  differentiate 
itself  from  open  source  rivals,  Micro¬ 
soft  last  week  said  it  would  expand 
its  indemnification  program  to  cover 
the  vast  majority  of  its  customers.  For 
several  years,  Microsoft  has  indemni¬ 
fied  its  volume  license  customers 
from  possible  legal  threats  stemming 
from  their  use  of  Microsoft  software. 
Last  year,  Microsoft  lifted  the  mone¬ 
tary  cap  on  that  protection.  The  ven¬ 
dor  now  is  extending  protection  to  vir¬ 
tually  all  users  of  its  products. 

■  Dell  last  week  announced  it  is  set¬ 
ting  up  a  third  customer  contact  cen¬ 
ter  in  India,  in  the  Chandigarh  metro¬ 
politan  area  in  the  north  of  the  coun¬ 
try.  Operations  at  the  center  are 
likely  to  begin  by  March  next  year 
with  about  300  employees.  Last  year 
Dell  had  stopped  routing  to  India 
technical  calls  from  some  corporate 
customers,  relating  to  some  of  its 
product  lines,  because  of  complaints 
about  poor  QoS,  according  to  reports. 


of  marketing  for  the  Novell  Linux  Desktop. 
“This  is  about  using  Linux  for  the  right 
roles  within  organizations.” 

The  package  combines  technology 
obtained  via  Novell’s  acquisitions  of 
Ximian  last  year  and  SuSE  early  this  year. 
Novell  has  cranked  up  its  support  for 
open  source  software  to  offset  sliding 
sales  of  NetWare,  which  accounts  for 
almost  a  third  of  Novell’s  revenue. 

The  Novell  Linux  Desktop  software  com¬ 
petes  with  the  freely  downloadable  KDE 
(KDE.ORG)  and  KOffice  suite  as  well  as 
with  GNOME  (GNOME.ORG)  and  the 
Xandros  Desktop  Version,  which  costs  $70. 

“What  Novell  has  created  is  very  similar 
to  what  you  would  find  in  other  desktops, 
with  the  exception  that  it  does  have  the 
Linux  2.6  kernel, which  makes  the  desktop 
feel  faster  and  more  responsive,”  says  Gary 
Hein, service  director  for  Burton  Group. 

Linux  Desktop  9,  which  runs  on  any  Intel 
workstation,  costs  $50  per  user.  Novell  is 
encouraging  users  to  buy  the  desktop 
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Novell’s  Linux 
Desktop  9 
suite  includes 
the  company's 
Evolution 
e-mail,  collabo¬ 
ration  and 
calendaring 
software. 
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along  with  the  ZENworks  6.6  Linux 
Management  package,  which  allows  desk¬ 
tops  and  laptops  to  be  configured  and  re¬ 


provisioned  automatically.  The  ZENworks 
6.6  Linux  Management  package  costs  $18 
per  user.  ■ 


Novell  swaps  an  old  suit  for  a  new  one 


Hard  on  the  heels  of  Novell  Vice  Chair¬ 
man  Chris  Stone’s  resignation  came 
word  that  Microsoft  was  paying  Nov¬ 
ell  $536  million  to  settle  an  anti-trust  action 
related  to  Novell’s  former  NDS  for  Windows 
NT  products.  Some  observers  think  there 
might  be  a  connection. 

After  accepting  the  payment,  Novell  with¬ 
drew  its  support  from  the  European  Un¬ 
ion’s  anti-trust  action  against  the  Redmond 
monopolist.  But  some  conspiracy  theorists 
(and  the  Linux  community  seems  to  have 
even  more  of  those  than  the  state  of  Mon¬ 
tana)  began  rumor  mongering  that  Novell 
sacked  Stone  at  Bill  Gates’  request  and 
snagged  a  bunch  of  money  in  the  process. 

While  it’s  true  Stone  was  the  lead  evange¬ 
list  for  Novell’s  move  into  open  source 
(and,  thus,  probably  anathema  to  Micro¬ 
soft),  it  is  Novell  Chairman  and  CEO  Jack 


Messman  who  is  frequently  quoted  as  a 
champion  of  the  open  source  way  —  and 
he  isn’t  leaving  the  company  just  yet. 

What  intrigued  me  about  the  settlement 
was  the  suit  that  didn’t  get  settled.  Novell 
said  it  planned  to  file  a  new  anti-trust  law¬ 
suit  against  Microsoft  tied  to  decade-old 
competitive  practices  involving  Novell’s 
WordPerfect  word  processing  software. 

Novell  reportedly  had  Redmond  dead  to 
rights  on  the  NDS  for  NT  issue,  including  a 
“smoking  gun”quote  from  the  former  head 
of  the  networking  group  for  Windows  NT, 
who  had  warned  Novell  that  if  it  proceed¬ 
ed,  Microsoft  would  break  the  product. 

The  WordPerfect  story,  though,  is  different. 
Novell  is  charging  that  Microsoft  manipu¬ 
lated  Windows  to  give  an  advantage  to  its 
own  Microsoft  Office  package  of  office  pro¬ 
ductivity  software  while  disadvantaging 
Novell’s  WordPerfect  Office  suite. 

Microsoft  settled  the  NDS  for  NT  suit  be¬ 
cause  the  company  couldn’t  easily  defend 
itself.  Microsoft  refused  to  settle  the  Word¬ 
Perfect  suit,  though, because  in  that  case  it’s 
Novell  that  will  have  the  difficult  time  prov¬ 
ing  its  case. 

Difficult  because  Microsoft  didn’t  bring 
about  the  downfall  of  WordPerfect  Corp. 
(except  indirectly,  by  providing  an  alter¬ 


native),  which  allowed  Novell  to  buy  the 
company. 

WordPerfect  was  done  in  by  its  own 
faulty  decisions,  a  situation  that  also 
seemed  to  survive  the  company  and  ac¬ 
company  the  product  as  it  went  from  hand 
to  hand  —  first  to  Novell  and  then  to  Corel. 

Kearns,  a  former  network  administrator, 
is  a  freelance  writer  and  consultant  in 
Silicon  Valley.  He  can  be  reached  at 
wired@vquill.  com. 


Was  Vice  Chairman  Chris 
Stone  pushed  or  did  he 
jump?  Is  there  trouble  in 
open  source  paradise,  or 
was  the  grass  looking 
greener  somewhere  else? 
See  this  week's  NetWare 
newsletter  (www.nwfusion. 
com,  DocFinder:  4626)  for  all 
the  facts,  speculation  and 
prognostications. 
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■  As  part  of  its  ongoing  efforts  to 
woo  public  sector  customers,  Micro¬ 
soft  has  begun  giving  governments 
tools  for  collaborating  and  sharing 
technology  information  with  other 
organizations  so  they  can  learn  from 
each  other’s  experiences  and  cut 
development  costs.  Under  a  program 
called  the  Solutions  Sharing  Net¬ 
work,  Microsoft  is  helping  provide 
public  sector  clients  with  a  communi¬ 
ty-based  portal  for  sharing  best  prac¬ 
tices,  application  source  codes  and 
other  development  information.  The 
software  maker  is  providing  interest¬ 
ed  public  sector  customers  with  the 
tools  for  free,  but  the  client  organiza¬ 
tions  are  in  charge  of  the  content, 
maintenance  and  procuring  of  any 
necessary  hardware,  Microsoft  said. 
The  Solutions  Sharing  Network  works 
on  top  of  Microsoft's  SharePoint 
Portal  Server  software.  It  gives  users 
a  sort  of  community  forum  where 
they  can  post  ideas,  code,  white 
papers  and  screen  shots,  and  share 
them  with  organizations  that  have 
common  technology  needs. 

■  Symantec  this  week  will  make 
available  Version  11.5  of  its  remote- 
control  software  pcAnywhere.  The 
software  lets  system  administrators 
access  and  take  actions  on  remote 
servers  and  desktops  via  a  peer-to- 
peer,  encrypted  connection.  With  this 
release,  Symantec  improved  encryp¬ 
tion  and  the  speed  at  which  it  can 
transfer  data  between  admini¬ 
strator  and  host  machines.  The  soft¬ 
ware  sends  data  between  machines 
at  256K  bit/sec,  using  the  Advanced 
Encryption  Standard.  Previously,  the 
package  supported  the  RC4  encryp¬ 
tion  algorithm  at  128k  bit/sec. 
Symantec  also  expanded  its  platform 
support  to  include  Linux  systems. 
Now  systems  managers  can  remote¬ 
ly  access  Linux  and  Windows 
machines  from  Linux  and  Windows 
machines  and  vice  versa.  Scheduled 
to  be  available  in  December, 
pcAnywhere  11.5  is  available  for 
enterprise  customers  for  $90  per 
seat  based  on  a  10-seat  license  with 
volume  discounts  available. 
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Hosted  software  tracks  sales  info 

Centive’s  Compel  performance,  commission  software  keeps  sales  reps  on  their  toes. 


■  BY  ANN  BEDNARZ 

Centive  last  week  unveiled  new  hosted 
software  aimed  at  helping  companies 
monitor  sales  performance,  calculate  com¬ 
missions  and  keep  their  salespeople  on 
track. 

Centive  Compel  aggregates  compensa¬ 
tion  information,  financial  metrics  and 
performance-related  data  so  companies 
can  keep  their  sales  teams  aware  and 
motivated.  Its  multiple  dashboards  cater 
to  sales  representatives,  managers  and 
compensation  administrators. 

For  sales  representatives,  the  dashboards 
display  data  such  as  commission  earned, 
ranking  against  peers,  and  progress  toward 
monthly,  quarterly  and  annual  goals. 
Analytic  features  find  ties  between  past 
performance  and  current  opportunities  so 
that  salespeople  can  see  which  of  their  in¬ 
progress  deals  are  statistically  likely  to 
come  through,  and  how  those  deals  would 
affect  their  compensation. 

The  view  for  sales  executives  calls  atten¬ 
tion  to  trends  and  spots  strengths  and 
weaknesses  within  the  sales  organization. 

Compel  is  designed  as  a  more  affordable 
alternative  to  Centive’s  existing  enterprise 
incentive  management  software,  Centive/ 
EIM.  Whereas  Centive/EIM  features  sophis¬ 
ticated  configuration  tools  to  meet  the 
most  intricate  compensation-calculating 
requirements,  Compel  is  designed  for  less 
complex  applications  that  adhere  to  indus¬ 
try  best  practices,  says  Bob  Conlin,  vice 
president  of  marketing  and  sales  at 
Centive. 

Most  companies  lack  the  budget  and  IT 
resources  to  implement  and  maintain 
complex  EIM  applications  from  compa¬ 
nies  such  as  Centive  and  competitors 
Callidus  Software  and  SynygySo  small  and 
midsize  companies  wind  up  using  home¬ 
grown  systems  and  manual  processes  that 
involve  copying  a  lot  of  spreadsheet  tables, 
he  says. 

The  average  price  for  Centive/EIM  is  $750 
per  seat,  Conlin  says.  Add  to  that  a  four-  or 
five-month  implementation  with  requisite 
services,  and  it’s  hard  for  a  large  company 
to  deploy  the  platform  for  less  than 
$500,000,  he  says. 

“A  platform  like  Centive/EIM  is  designed 
to  handle  pretty  much  any  scenario  you 
can  throw  at  it. That’s  why  it  takes  so  long 
to  implement,  because  you  have  to  con¬ 
figure  all  the  business  rules  and  logic,” 
Conlin  says. 


Hosted  appeal 

Small  and  midsize  businesses  will 
consume  almost  $1  billion  in  CRM 
software  delivered  as  a  service  by 
2009  —  a  five-year  compound 
annual  growth  rate  of  41%, 
Gartner  says. 


Compel  prices,  meanwhile,  range  from 
$30  to  $50  per  seat,  per  month,  depending 
on  volume. To  simplify  the  rollout  process, 
Centive  has  pre-built  templates  and  config¬ 
uration  wizards  based  on  common  prac¬ 
tices.  The  hosted  delivery  model  speeds 
deployment  to  about  30  days  and  reduces 
companies’  upfront  costs,  Conlin  says. 

More  small  and  midsize  businesses 
(SMB)  are  predicted  to  opt  for  hosted  CRM 
offerings  in  coming  years,  Gartner  says.  In 
2002  just  8%  of  SMBs  determined  that  an 


■  BY  JOHN  FONTANA 

Real-time  communications  vendors 
Akonix  and  FaceTime  last  week  beefed  up 
their  security  gateways  to  lock  down  the 
avenues  that  viruses  and  malware  travel 
using  instant-messaging  and  peer-to-peer 
programs. 

The  vendors,  which  made  their  related 
announcements  at  the  Computer  Security 
Institute  conference  in  Washington,  D.C., 
are  adding  support  for  blocking  many 
p'eer-to-peer  protocols  and  IM  clients. 

IM  and  peer-to-peer  file-sharing  programs 
made  the  SANS  Institute’s  list  of  top  20  vul¬ 
nerabilities  this  year. The  report  says  IM  vul¬ 
nerabilities  come  in  the  form  of  remotely 
executed  buffer  overflows  such  as  the 
recent  exploit  using  JPEG  files,  URL/mali¬ 
cious  link-based  attacks,  file  transferring 
vulnerabilities  and  Active  X  exploits. 

Peer-to-peer  vulnerabilities  include 
denial-of-service  attacks  and  unautho¬ 
rized  file  access.  Peer  to  peer  also  can 
raise  legal  issues  related  to  distribution  of 
copyrighted  material. 


ASP  had  a  part  to  play  in  their  CRM  initia¬ 
tives.  By  2007,  that  figure  will  grow  to  30%, 
Gartner  says. 

Full-blown  ERP  suites  were  too  expensive 
for  OpenSystems  to  consider  for  its  sales 
performance  requirements,  says  John 
Murgo,  senior  vice  president  and  CFO  at 
the  software  vendor.  OpenSystems,  which 
makes  network  and  security  management 
software,  is  a  beta  user  of  Centive’s  Compel 
service. 

“We’re  not  going  to  go  cut  a  check  for  a 
couple  hundred  thousand  or  more  for 
some  fancy  ERP  system.  It  just  doesn’t 
make  sense  for  a  company  at  our  stage  and 
size,”  Murgo  says. 

Compel  will  be  able  to  handle  the  intri¬ 
cacies  of  compensation  so  salespeople 
can  keep  tabs  on  their  commissions,  as 
well  as  map  corporate  goals  to  perfor¬ 
mance  so  management  can  monitor  the 
company’s  health,  Murgo  says. 

Centive  plans  to  begin  offering  Compel 
in  the  first  quarter  of  next  year.  ■ 


“If  you  take  a  look  at  a  lot  of  IT  depart¬ 
ments  they  will  say  they  don’t  have  con¬ 
sumer  IM  or  [peer-to-peer]  apps  in  use.and 
then  you  put  a  sniffer  on  the  network  and 
you  find  there  are  a  bazillion  connections 
per  day  to  all  of  these,”  says  Michael 
Osterman,  president  of  Osterman  Re¬ 
search.  He  says  vendors  such  as  Akonix 
and  FaceTime  bring  awareness  to  the 
issue.  “These  vulnerabilities  are  becoming 
more  of  a  problem,  but  at  the  same  time 
people  are  becoming  more  aware  of  the 
fact  that  bad  stuff  is  out  there.” 

Akonix  is  set  to  announce  Version  4.0  of 
its  Enforcer  gateway,  which  sits  at  the  edge 
of  a  network,  monitors  outbound  traffic 
and  blocks  IM  and  peer-to-peer  protocols. 
Enforcer  works  in  conjunction  with 
Akonix’s  L7  Enterprise  server,  which  lets 
See  Security,  page  36 
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Companies  target  IM, 
peer-to-peer  threats 
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Unwanted  vocalizations 


Computer  users  are  bombarded  with 
unrequested  noise  from  the  time 
they  turn  their  ((systems//bb))  on  to 
when  they  turn  them  off.  Why  can’t  we  get 
quiet  by  default? 

I  don’t  remember  the  last  big  meeting  I 
was  at  where  at  least  one  Windows 
machine  did  not  play  the  start-up  “Ode  to 
Bill”  at  some  point,  usually  in  the  middle  of 
someone  making  an  important  point.  I  real¬ 
ize  that  it  is  useful  to  have  some  indication 
that  your  machine  is  coming  to  life  but  why 
does  it  have  to  be  so  loud  by  default  and  so 
long?  Maybe  Microsoft  sees  it  as  some  sort 
of  an  advertisement  to  lure  others  to  adopt 
Windows  but  mostly  what  it  means  to  me  is 
that  few  people  trust  the  system  enough  to 


do  anything  other  than  shut  it  fully  down  in 
between  uses  —  hardly  an  advertisement. 
(In  comparison, almost  all  Macintosh  users 
just  put  their  machines  to  sleep  and  wake 
them  up  silently  when  it’s  time  to  use  them 
again.) 

Why  do  systems,  Macs  included,  think 
you  want  to  sound  like  you  are  playing  a 
video  game  when  you  are  editing  a  file? 
You  get  noises  each  time  you  hit  a  key, 
change  text,  delete  a  file.  1  could  under¬ 
stand  the  attractiveness  of  this  sort  of  thing 
if  the  user  is  about  5  years  old  but  it  quick¬ 
ly  just  becomes  an  annoyance  to  the  per¬ 
son  next  to  you  on  the  plane. 

This  sound-pollution  problem  is  not  limit¬ 
ed  to  operating  systems  and  applications; 
the  people  who  design  Web  pages  have 
continued  their  fascination  with  form  over 
substance.  This  started  with  imposing 
inescapable  dancing  Flash  graphics  on 
anyone  who  just  wants  to  visit  a  Web  site  to 
get  some  useful  information.  More  Web 
sites  now  imitate  boom  boxes  or  yell  at  you 


when  you  mistakenly  assume  that  they 
might  be  more  concerned  with  content 
than  sizzle. 

Looking  for  a  recipe  for  Guinness  Beef 
Stew?  If  so  go  to  the  GeoCities  site  for  Napa 
Valley  and  you  get  Irish  (1  think)  music  to 
read  the  recipe  by  (www.nwfusion.com, 
DocFinder:  4627).  If  you  miss  the  self  intro¬ 
duction  that  Johnny  Cash  issued  on  many 
an  album  and  at  all  concerts  go  to  his  Web 
site  and  you  get  blasted  with  it  at  full  vol¬ 
ume  (DocFinder:  4628).  If  you  want  to 
catch  up  on  the  NASA  Mars  rovers  by  going 
to  the  NASA  Web  site  (and  skipping  by  the 
pretty  but  time-consuming  Flash  anima¬ 
tion)  you  get  personally  greeted  by  the 
voice  of  NASA  Administrator  Sean  O’Keefe, 
who  seems  to  have  far  more  ego  than 
sense  (DocFinder:  4629).  In  addition,  if  you 
leave  the  Web  page  open,  I  guess  O’Keefe 
gets  lonely  because  he  greets  you  again 
and  again.  These  are  only  three  of  hun¬ 
dreds  of  sites  I’ve  bumped  into  that  for  rea¬ 
sons  that  elude  me  want  to  make  it  clear  to 


www.nwfusion.com 


everyone  in  the  neighborhood  that  you 
have  reached  their  site.This  is  in  addition  to 
the  growing  number  of  sites  where  you  get 
bombarded  with  sound  augmented  ads. 

Of  course,  you  run  into  these  idiot  sites 
most  often  when  you  are  in  a  meeting  pre¬ 
tending  to  listen  to  your  boss,  or  some 
other  presenter. This  is  not  a  good  way  for  a 
Web  site  to  endear  itself  to  visitors. 

I  do  not  mind  operating  systems  where 
you  can  turn  on  sound  effects  with  a  con¬ 
figuration  screen  or  sites  that  include  an 
“annoy  me  with  sound”  button,  but  com¬ 
puters  and  the  Web  should  not  speak 
unless  requested  to. 

Disclaimer:  Students,  on  the  other  hand, 
have  to  figure  out  that  it  can  be  important 
to  speak  unbidden  —  at  least  sometimes 
—  thus,  the  above  plea  for  silence  is  mine 
and  not  the  University’s. 

Bradner  is  a  consultant  with  Harvard 
University's  University  Information  Systems. 
He  can  be  reached  at  sob@sobco.com. 


Tool  fights  wireless, 
wired  worm  outbreaks 


■  BY  ELLEN  MESSMER 

Trend  Micro  last  week  announced  an 
appliance  intended  to  help  users  monitor 
for  computer  worm  outbreaks  across 
wired  and  wireless  LAN  segments. 

The  1G  bit/sec  Network  VirusWall  2500 
appliance  filters  network  traffic,  recogniz¬ 
ing  worms  and  tracing  them  back  to  the 
source  of  the  outbreak.  VirusWall,  which 
works  without  the  need  for  agent  software 
for  the  desktop,  is  able  to  recognize  when  a 
worm  outbreak  has  started  within  a  corpo¬ 
rate  network,  recognizes  the  source  and 
reaches  into  the  desktop  machine  to  erad¬ 
icate  the  worm. Trend  Micro  also  will  offer 
a  lower-speed  version,  VirusWall  1500,  and 
last  week  introduced  the  VirusWall  300 
designed  specifically  to  protect  automated 
teller  machines  and  ticketing  kiosks  used 
by  airlines. 

Jamie  Cerra,  network  engineer  at  IMG 
Academies,  a  sports  training  and  educa¬ 
tion  facility  in  Bradenton, Fla., says  he  uses 
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VirusWall  on  the  LAN  for  the  students  in 
its  dormitories,  which  is  kept  separate 
from  the  IMG  corporate  LAN. 

“Last  year  we  had  a  couple  of  bad  out- 

fcfc  Last  year  we  had  a 
couple  of  bad  outbreaks 
...  and  it  was  a  night¬ 
mare  going  from  room 
to  room  to  find  what 
was  wrong.!  1 

Jamie  Cerra 

Network  engineer,  IMG  Academies 

breaks,  which  saturated  the  network,  and  it 
was  a  nightmare  going  room  to  room  to  find 
what  was  wrong,”  Cerra  says  about  his  deci¬ 
sion  to  start  looking  for  a  way  to  stop  worm 
outbreaks  that  started  with  the  students’ 
desktop  computers  on  the  campus  LAN. 

“We  don’t  own  any  of  those  laptops;  peo¬ 
ple  bring  their  own  in  and  it’s  hard  to  keep 
under  control,”  Cerra  says. 

Cerra  says  he  likes  the  VirusWall 
approach  because  it  doesn’t  require 
adding  agent  software  to  desktops  and 
works  quickly  to  go  into  an  infected 
machine  and  eliminate  the  worm. 

Network  VirusWall  competes  against 
worm-suppression  and  policy-enforce¬ 
ment  technologies  developed  by  McAfee 
and  Symantec,  and  router  and  switch  ven¬ 
dors  including  Alcatel. 

Network  VirusWall  2500  costs  $8,000.  ■ 


Security 
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companies  manage  IM  by  blocking  it  out¬ 
right  or  controlling  its  use  with  specific 
policies. 

Akonix  is  adding  support  to  Enforcer  for 
peer-to-peer  applications  eDonkey  and 
BitTorrent,  and  the  ability  to  block 
Internet  Relay  Chat,  which  often  is  used 
as  a  back  channel  by  malicious  software. 

Enforcer  also  is  being  upgraded  with 
the  ability  to  look  inside  encapsulated 
virtual  LAN  traffic,  support  for  multiple 
network  interface  cards  in  a  single  serv¬ 
er  and  identity  services  to  tie  Enforcer 
to  corporate  directories. 

“I  liken  the  [peer-to-peer]  file  sharing  to 
the  old  game  of  Whack-a-Mole;  once  one 
is  whacked  down  some  teenager  some¬ 
where  creates  another  protocol  that  is 
even  harder  to  detect,”  says  Francis 
Costello,  chief  marketing  officer  at 
Akonix. 

Enforcer  4.0  is  scheduled  to  ship  in  the 
next  30  days  priced  at  $7,000  per  1,000 
nodes. 


FaceTime  is  set  to  introduce  Version  2.0 
of  Real-Time  Guardian  (RTG)  500,  a 
Linux-based  network  appliance  that  can 
monitor  and  block  IM  and  peer-to-peer 
traffic. 

The  appliance  is  being  updated  with 
the  capability  to  block  Koala  DC, 
BitTorrent  and  Azureus  peer-to-peer  appli¬ 
cations.  FaceTime  also  is  adding  the  abili¬ 
ty  to  detect  embedded  vulnerabilities  in 
IM  traffic,  such  as  the  JPEG  exploit. 

RTG  500  2.0  also  includes  an  auto 
update  feature  for  blocking  peer-to-peer 
applications  on  the  fly,  and  FaceTime  is 
expected  to  announce  it  has  formed  an 
internal  group  to  research  the  latest  vul¬ 
nerabilities,  worms  and  viruses,  and  cre¬ 
ate  signatures  that  can  be  uploaded  into 
Version  2.0. 

In  addition,  the  group,  called  FaceTime 
Instant  Response  Security  Team,  is 
scheduled  to  develop  a  set  of  tools  and 
best  practices  to  assess  vulnerability;  the 
tool  will  be  made  available  free  to  users. 

RTG  500  2.0  is  priced  at  $5,000  per 
appliance  and  $15  per  user  for  1,000 
users.  ■ 


Problem  programs 

The  SANS  Institute  this  year  included  both  instant-messaging  and  file¬ 
sharing  or  peer-to-peer  applications  on  its  list  of  the  top  20  network 
vulnerabilities. 


Application 

Issues 

Common  programs 

Instant  messaging 

Remotely  exploitable  vulnerabilities 
in  these  programs  are  a  growing 
threat  to  the  integrity  and  security 
of  networks. 

Yahoo!  Messenger, 
AOL  Instant 
Messenger, 

MSN  Messenger  and 
Windows  Messenger 

File  sharing 

Technical,  social  and  legal 
vulnerabilities  surround  use  of 
peer-to-peer  software. 

Napster,  eDonkey, 
Gnutella,  KaZaa 
and  BitTorrent 

solution  that  offers  optimum  performance  and  real-time  flexibility.  Microsoft  found  both  in  the 
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LET  QWEST  iQ  NETWORKING  TRANSFORM  YOUR  NETWORK 
INTO  ONE  WELL-OILED,  SMOOTH-RUNNING  MACHINE. 


Some  say,  “No  way.”  We  say,  “Bring  it  on.”  Qwest  iQ  Networking'"  makes  disparate  transport  technologies  act 
like  a  single,  state-of-the-art  network.  Now  your  ATM,  frame,  private-line  and  IP-based  networks  can  all  work 
together  as  one  seamless  entity.  Better  security,  more  robust  hosting  capabilities  and  more  diverse 
solutions  are  at  your  beck  and  call  with  our  converged,  intelligent  OC-192  MPLS-based  network.  Which  means 
you’ll  also  get  more  out  of  the  applications  you’ve  already  invested  so  much  time,  money  and  energy  in.  And 
you’ll  be  able  to  adapt  more  readily  and  proficiently  with  new  technologies  like  VoIP.  So  give  us  a  call  when 
you’re  ready  to  advance  your  network  to  a  new  level  of  converged  harmony.  We’re  waiting  in  the  wings  with 
the  tools  to  make  it  happen. 


1  800-506-0663  or  visit  qwest.com/networksolutions 
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on  services  ordered.  Additional  equipment  may  be  required.  All  trademarks  are  the  property  of  Qwest  Communications  International  Inc.  ©2004  Qwest.  All  rights  reserved. 
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■  REGULATORY  AFFAIRS  ■  CARRIER  INFRASTRUCTURE 


BT-Infonet  has  history  to  overcome 


■  BY  JOHN  BLAU 

Multinational  companies  have  seen  them 
come  and  go  —  Concert,  Unisource, 
Global  One  and  a  handful  of  other  global 
network  ventures.  Now  a  new  one  is  about 
to  be  born,  after  British  Telecom  Group’s 
agreement  last  week  to  acquire  Infonet. 

But  the  question  on  the  minds  of  many 
experts  is:  Will  this  newly  merged  global 
communications  company  succeed  where 
the  others  have  failed?  It’s  possible,  they 
agree,  but  BT  will  have  its  work  cut  out. 

BT  will  pay  $965  million  to  acquire 
Infonet  in  a  move  aimed  at  increasing  its 
global  reach  and  customer  base.The  trans¬ 
action,  which  is  subject  to  regulatory  and 
stockholder  approvals,  is  expected  to  be 
completed  in  the  first  half  of  2005. 

The  combination  of  BT’s  and  Infonet’s 
networks  should  strengthen  the  group’s 
presence  in  the  crucial  North  American 
and  Asia-Pacific  markets. 

Today,  Infonet  boasts  operations  in  70 
countries,  points  of  presence  in  180  coun¬ 
tries  and  a  customer  base  of  more  than 
1,800  large  and  midsize  companies. 

By  joining  forces,  BT  and  Infonet  expect 
their  expanded  reach,  larger  customer 
base  and  added  network  expertise  to  give 
them  an  edge  over  rivals  such  as  AT&T 
Global  Network  Services,  Equant  NV 
(owned  by  France  Telecom  SA)  and 
T-Systems  International  (a  unit  of  Deutsche 


Takes 


■  MCI  announced  last  week  three 
new  single-user  business  DSL  ser¬ 
vices.  The  asymmetric  DSL  ser¬ 
vices  are  DSL  Solo  768K  bit/sec, 
Internet  DSL  Solo  1.5M  bit/sec  and 
Internet  DSL  Solo  Resale.  Previously, 
MCl's  DSL  Solo  services  maxed  out 
at  384K  bit/sec.  The  three  offerings 
are  available  in  300  metropolitan 
areas.  In  June,  MCI  expanded  the 
reach  of  its  DSL  footprint  by  75% 
through  an  agreement  with  New 
Edge  Networks.  In  addition  to  sup¬ 
porting  its  DSL  service  over  New 
Edge’s  network,  the  carrier  also 
works  with  Covad  Communications 
and  has  facilities  in  55  local  markets. 


fcfc  We’ve  always  said  we'd  make  acquisi¬ 
tions  that  enhance,  not  change,  our  strat¬ 
egy.  And  Infonet  does  exactly  that  9  9 


Ben  Verwaayen 

CEO,  BT 


Telekom).  But  the  new  group  could  have 
difficulty  winning  new  users  with  lingering 
memories  of  failed  business  relationships. 

‘After  the  collapse  of  WorldCom  and  KPN¬ 
Qwest,  nobody  is  prepared  to  put  all  their 
business  or  even  a  huge  amount  of  it  into  a 
single  global  contract,”  says  Ewan  Suther¬ 
land,  chairman  of  the  International  Tele¬ 
communications  Users  Association.  “They 
are  spreading  it  around  as  best  they  can.” 

If  the  collapse  of  global  ventures  has  been 
a  bone  of  contention  with  multinational 
companies,  it  has  hardly  been  the  only  one. 

“It’s  one  thing  to  offer  service  primarily  to 
banks  and  insurance  companies  in  big 
cities,”  Sutherland  says.“It’s  something  com¬ 
pletely  different  to  offer  service  to  compa¬ 
nies  that  have  factories,  warehouses,  offices 
and  call  centers  spread  in  smaller  cities 
across  a  country  Local  access  can  lead  to 
huge  overheads,  which  have  crippled 
global  networking  ventures  in  the  past.” 

Some  industry  analysts  are  also  cautious 
in  their  assessment  of  the  deal. 

“For  a  start,  the  merger  means  less  choice 
for  users,”  says  Camille  Mendler,  an  analyst 
at  The  Yankee  Group.“BT  has  been  gaining 


good  momentum,  and  an  acquisition 
could  slow  down  the  operator.  BT  has  not 
been  good  at  integrating  its  acquisitions.” 

Playing  down  the  past,  BT  CEO  Ben  Ver¬ 
waayen  referred  to  the  Infonet  deal  as 
something  different. “This  is  not  a  joint  ven¬ 
ture;  this  is  a  very  focused  acquisition  and 
not  old  history?’  he  said. “We’ve  always  said 
we’d  make  acquisitions  that  enhance,  not 
change,  our  strategy.  And  Infonet  does 
exactly  that.” 

Kate  Kerwig,  an  analyst  with  Current 
Analysis,  warns  that  BT  will  need  to  finish 
uncompleted  work.The  group, she  wrote  in 
a  research  report,  has  spent  significant  time 


and  money  standardizing  its  global  opera¬ 
tions  so  that  customers  can  buy  the  same 
products  in  each  market  and  be  supported 
by  the  same  service-level  agreements  and 
customer  care  portal.“This  unfinished  ratio¬ 
nalization  process  will  need  to  continue 
following  the  Infonet  acquisition  and  may 
now  be  more  complex  with  another  set  of 
services  to  blend  into  the  mix,” she  wrote. 

The  link  with  Infonet  also  will  let  BT  offer 
more  value-added  services  such  as  net¬ 
work  security  and  multimedia. 

Blau  is  a  correspondent  with  the  IDG 
News  Sewice. 


Building  the  next-generation  telecom  team 


EYE  ON  THE 
CARRIERS 

Johna  Till 
Johnson 


Ask  any  telecom  manager  about  the 
hardest  part  of  his  job,  and  it  invari¬ 
ably  has  to  do  with  personnel. 
Perhaps  it’s  getting  the  voice  and  data 
teams  to  play  nice  during  a  VoIP  rollout.  Or 
maybe  it’s  effectively  managing  a  service 
installation.  There’s  always  the  question  of 
whether  the  team  is  sized  correctly  and  has 
the  right  skills  to  cope  with  a  changing  tele¬ 
com  environment. 

I’ve  learned  that  it’s  these  softer  issues 
that  can  make  or  break  an  IT  operation. 
One  of  my  favorite  bellwether  companies 
always  manages  to  be  at  the  cutting  edge 
of  technology  —  at  the  same  time  display¬ 
ing  overall  best  practices  for  IT  people  and 
processes.  Coincidence?  1  doubt  it. 

Here  are  some  areas  to  pay  close  atten¬ 


tion  to  as  you  build  out  your  telecom  team: 

•  Converge  your  voice  and  data  staffs 
sooner  rather  than  later.  Even  if  you  have  no 
immediate  plans  for  VoIP  or  unified  messag¬ 
ing,  it’s  a  good  idea  for  your  teams  to  under¬ 
stand  both  worlds.  I’m  convinced  that  in  the 
1990s,  Cisco  increased  the  challenge  of  pro¬ 
moting  VoIP  technology  by  pitting  voice  and 
data  teams  against  each  other,  thereby  cre¬ 
ating  unnecessary  tension. 

•  Invest  in  project  management.  Good 
project  managers  —  people  who  can  make 
sure  complex  projects  are  broken  down 
into  digestible  steps  —  are  indispensable 
for  large  service  rollouts,  migrations  and 
any  outsourcing  your  company  might  plan. 

•  Have  a  training  budget  —  and  review  it 
often.  Lack  of  relevant  skills  is  a  gating  fac¬ 
tor  in  rolling  out  new  technology  —  and  it 
can  cost  money.  I’ve  heard  IT  executives 
say  lack  of  trained  personnel  has  kept 
them  from  implementing  technologies 
such  as  storage-area  networks,  open 
source,  Web  services  and  VoIP  —  all  of 
which  can  provide  savings  of  up  to  80%. 
Training  is  one  of  the  best  investments 
because  it’s  win/win:  by  increasing  your 
team’s  skills,  you  let  them  assume  more 


responsibility  and  grow  professionally  In 
return,  you  get  a  team  that  intimately 
understands  your  operating  environment 
and  has  the  necessary  expertise. 

•  Effectively  leverage  outside  consultants 
and  outsourcers.  That  said,  sometimes 
there  are  cases  in  which  it’s  not  cost-effec¬ 
tive  to  train  internal  folks:  one-time  projects 
for  which  you  won’t  need  the  skills  again, 
or  routine  tasks  that  can  be  done  less 
expensively  elsewhere.  Have  enough  peo¬ 
ple  dedicated  to  that  task,  and  ensure  that 
they  have  the  right  skills,  such  as  project 
management  and  negotiations  savvy 

•  Build  bridges.  Most  work  gets  done 
through  informal  networks.  In  addition  to 
keeping  in  touch  with  your  IT  peers  and 
the  lines  of  business,  you  and  your  team 
should  stay  close  to  the  co-workers  in  facil¬ 
ities,  finance,  procurement  and  legal.  Good 
relationships  with  those  groups  can  some¬ 
times  make  the  difference  between  a  gold- 
star  project  and  a  disaster. 

Johnson  is  president  and  chief  research 
officer  at  Nemertes  Research,  an  indepen¬ 
dent  technology  research  firm.  She  can  be 
reached  at  johna@nemertes.com. 
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App  routers  integrate  data  in  a  snap 


HOW  IT  WORKS 


Application  router 


An  application  router  serves  as  a  translation  engine 
that  connects  legacy  systems.  Here  is  an  example  of 
how  it  might  be  used  to  electronically  send  invoices 
to  customers  in  multiple  formats. 

Customers 


Source  ERP 
system 


Web  management  console 


O  An  invoice  gets  created  in  the  source  ERP  system. 

©  An  application  router  connects  to  the  ERP  system  and  extracts  this  new  invoice  in  real  time. 

©  The  application  router  then  determines  the  target  customer  for  this  particular  invoice  via  content-based  routing. 

©  The  application  router  transforms  the  source  invoice  data  to  the  appropriate  target  format  (EDI,  XML,  Excel, 
etc.)  the  customer  requires. 

©  The  application  router  provides  a  guaranteed  delivery  of  the  generated  invoice  to  the  appropriate  customer  using 
the  appropriate  protocol,  such  as  Secure  FTP,  HTTP(s)  and  e-mail. 

©  The  application  router  provides,  via  a  Web  management  console,  complete  visibility  into  all  business  transactions 
processed  through  the  router.  If  data  or  connectivity  errors  occur,  the  application  router  proactively  sends  alert 
notifications  to  IT  administrators  in  a  variety  of  ways,  including  SNMP,  pagers,  cell  phones  and  e-mails. 


■  BY  FRED  MEYER 

The  goal  of  data  integration  is  simple:  to 
let  one  system  exchange  information  with 
another,  such  as  two  banking  systems 
joined  by  a  merger.  However,  the  reality  is 
more  complex  for  IT  managers.  The  tech¬ 
nology  landscape  is  littered  with  failed 
promises  based  on  expensive  software,  cus¬ 
tom  projects  to  build  connectors  for  data 
exchange  and  a  litany  of  technologies  that 
haven’t  done  the  job. 

An  application  router  is  an  emerging 
alternative  to  using  expensive,  customized 
software  for  data  integration.This  appliance 
serves  as  a  translation  engine  that  connects 
all  sorts  of  legacy  systems,  offering  a  cost- 
effective  way  of  joining  applications. 

The  best  way  to  cut  data-integration  costs 
is  by  reducing  the  complexity  of  the  prod¬ 
ucts  used.  Because  most  integration  pro¬ 
jects  are  point-to-point,  application  routers 
simply  can  be  dropped  between  the 
points. 

Much  like  a  multi-protocol  router,  an 
application  router  appliance  can  be 
placed  in  a  network  where  data  needs  to 
be  exchanged, such  as  between  a  database 
that  speaks  SQL  and  an  ERP  system  that 
speaks  XML.  The  router  serves  as  the  trans- 


Got  great  ideas 


■  Network  World  is  looking  for  great 
ideas  for  future  Tech  Updates.  If  you 
want  to  contribute  a  primer  on  a  spe¬ 
cific  technology,  standard  or  protocol, 
contact  Amy  Schurr,  senior  managing 
editor,  features  (aschurr@nww.com). 


lator  between  the  two  systems,  operating  at 
the  network  layer  so  that  database  infor¬ 
mation,  files  and  other  relevant  business 
data  can  be  seamlessly  directed  into  the 
correct  repositories. 

Application  routers  are  being  used  by 
Fortune  500  companies  to  solve  integra¬ 
tion  challenges.  The  products  generally 
consist  of  design-time  softwares  hardware 
appliance  and  a  Web-based  portal.  They 
perform  five  main  functions: 

•  Connectivity:  Connects  to  flat-files, XML 
files,  databases,  Web  Services,  EDI,  MQ 
Series  and  major  applications. 

•  Data  transformation:  Includes  a  full  run¬ 
time  and  design  environment  to  resolve 
mismatched  data  between  source  and  tar¬ 
get  systems. 

•  Content-based  routing:  Enables  IT  man¬ 
agers  to  graphically  model  the  conditions 
for  routing  data  from  source  systems  to  one 
or  more  target  systems. 

•  Monitoring:  Lets  IT  managers  monitor 
the  complete  history  of  transactions 
processed  by  the  application  router,  and 
health  of  the  router’s  components. 

•  Alert  notifications:  Sends  proactive 
error  notifications  via  email  or  SNMP  traps 
for  data  and  connectivity  errors. 

A  company  can  use  an  application 
router  to  connect  two  systems  that  need  to 
exchange  data.  On  a  wider  scale,  corpora¬ 
tions  can  build  application  data  network 
fabric  that  connects  data  housed  at  far- 
flung  offices  with  systems  at  headquarters 
or  centralized  data  centers. 

The  combination  of  hardware  and  soft¬ 
ware  that  makes  up  an  application  router 
offers  a  self-contained  option  for  IT  depart¬ 
ments  that  have  ongoing  data  integration 
woes  they  can’t  solve  without  another 
large  investment.This  approach  can  save  IT 


money  in  several  ways:  through  technolog¬ 
ical  simplicity;  rapid  implementation 
times;  manageability  advantages;  opera¬ 
tional  vs.  capital  costs;  and  an  overall  low 
total  cost  of  ownership  (TCO). 

When  compared  with  traditional  enter¬ 
prise-integration  software  technologies 
and  custom  programming  options,  an 
application  router  reduces  upfront  devel¬ 
opment  costs  and  ongoing  management 
fees  that  software  companies  often  charge. 


And  it  is  not  an  all-or-nothing  proposi¬ 
tion.  An  application  router  can  co-exist 
with  other  ongoing  integration  projects, 
augmenting  existing  products  that  com¬ 
panies  already  have  invested  in.  The 
beauty  of  this  technological  develop¬ 
ment  lies  in  its  simplicity. 

Meyer  is  president  and  CEO  of  Cast  Iron 
Systems.  He  can  be  reached  at  fred.mayer 
@castironsys.  com. 


Dr.  Internet  By  Steve  Blass 

How  can  we  build  a  Jboss  Web  application  server 
from  the  source  code?  When  we  try  to  do  it  in  our 
integrated  development  environment  we  get  pro¬ 
ject  configuration  errors  because  the  source  code 
is  arranged  differently  than  our  tools  expect. 

Jboss  is  most  easily  built  by  running  the  included 
build  scripts  from  the  command  line.  The  Jboss  dis¬ 
tribution  packages  build  from  the  command  line 
without  much  trouble.  To  build  the  Jboss  applica¬ 


tion  server  you  need  Jboss  from  www.jboss.org 
and  a  Java  Development  Kit  (JDK).  You  also  will 
need  Ant  from  ant.apache.org.  Install  your  JDK. 
Unzip  Ant  and  add  the  ant\bin  directory  to  your 
PATH  environment  variable.  Unzip  the  Jboss  distri¬ 
bution  into  a  clean  directory  and  run  the  build 
script  found  in  the  build  directory.  If  all  goes  well 
the  application  server  will  be  compiled  and  placed 
in  a  directory  named  "output"  inside  the  build 
directory.  Go  to  the  ‘build\output\bin’  directory  and 


execute  the  'run'  script.  Test  the  installation  by  aim¬ 
ing  your  browser  at  www.nwfusion.com, 

DocFinder:  4630.  If  you  see  the  Jboss  console  page, 
you  have  successfully  built  Jboss  and  can  deploy 
applications.  Be  sure  to  change  the  default  admin 
password  to  protect  console  access. 

Blass  is  a  network  architect  at  Change@Work  in 
Houston.  He  can  be  reached  at  dr.internet@change 
atwork.com. 
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View  our  on-demand  webcast,  “A  New  Game 
—  The  Fast  Emerging  World  of  IP  Convergence,” 

now  at  www.gobroadcom.com/convergence 
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LOOK  WITHIN  —  YOUR  NETWORK  IS 
MORE  POWERFUL  THAN  YOU  REALIZE 


To  engage  the  immense  power  of  IP  convergence  —  data,  voice,  applications,  networks  —  the  underlying  technology 
must  function  securely,  reliably  and  efficiently.  Only  Broadcom®  offers  end-to-end  networking  chips  with  the 
built-in  power  to  manage  convergence  —  from  core  storage  and  servers,  through  switch  fabrics  to  desktops, 
multi-functional  devices  and  beyond.  Broadcom’s  wired  and  wireless  technology  throughout  the  network  reduces  complexity  and  enhances  the 
end-user  experience.  With  Broadcom,  there  is  no  gap  between  legacy  and  future  technologies  —  only  seamless  communication  at  maximum 
speed.  Technology  advances.  Networks  expand.  Control  is  maintained. 
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Companies  adopting  HP  Integrity  servers,  powered  by  industry-leading  Intel®  Itanium®  2  Processors,  are  seeing  remarkable  gains  in  performance 

The  momentum  is  building.  One  after  another,  companies  are  choosing  HP  Integrity  servers.  Leading  software  and  technology  partners  such  as 
BEA,  Microsoft,®  Oracle,  SAP  and  Siebel  Systems  have  embraced  the  platform  as  an  industry  standard.  And  with  the  ability  to  manage  a  mixed 
environment  of  UNIX,  Microsoft®  Windows;  Linux  and  OpenVMS,  HP  Integrity  servers  are  fast  becoming  the  ultimate  consolidation  tool.  Demand 
maximum  performance,  reliability  and  cost-efficiency  now,  on  a  platform  that  will  carry  you  forward  into  the  future.  Demand  performance  that's 
real-world  proven,  and  get  it— with  HP  Integrity  server  solutions. 


Choosing  HP  Integrity  servers,  choosing  results. 


AIRBUS  UK: 

Running  HP-UX!  1i  on  HP  Integrity 
servers,  20-30  wing  design 
simulations  that  used  to  take 
weeks  are  now  done  overnight. 


COMPUSA: 

Going  with  64-bit  architecture 
using  HP  Integrity  servers, 
they  cut  access  time  to  inventory 
data  by  up  to  85%. 


FIAT  AUTO: 

Standardizing  on  64-bit 
infrastructure  using  HP  Integrity 
servers,  they're  integrating  and 
enhancing  sales  and  service  as 
well  as  streamlining  the  buying 
process  while  lowering  sales  cost. 


THE  KOEHLER  GROUP: 

Moving  to  an  environment 
composed  of  HP  Integrity  servers, 
they  gained  a  50%  improvement 
in  mission-critical  performance. 


invent 


To  get  the  IDC  white  paper  outlining  the  performance  of  HP  Integrity 
servers  with  Intel®  Itanium®  2  Processors, 

CALL 

1-800-282-6672 

option  5,  mention  code  AQHG 

CLICK 

hp.com/go/demandintegrity6 

Intel.  Intel  Inside,  the  Intel  Inside  Logo  and  Itanium  are  trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsidiaries  in  the  United  States  and  other  countries.  Microsoft  and  Windows  are  either  registered  trademarks  or  trademarks  of  Microsoft  Corporation.  ©2004  Hewlett-Packard  Development  Company.  IP. 
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Search  for  Windows  key  turns  up  other  cool  tools 


Have  you  ever  been  in  the  annoying 
situation  of  having  Windows  in¬ 
stalled  on  a  machine  but  you  had  no 
idea  where  the  card  with  the  CD  key  was? 
This  happened  to  us  yesterday  and  after 
searching  high  and  low  in  the  office  and 
drawing  a  blank,  we  went  looking  for  a 
solution. 

We  found  some  online  help,  but  there  is  a 
certain  amount  of  confusion  in  the  advice. 
Many  sites  suggest  running  up  regedit  to 
find  the  CD  key  but  this  method  works  only 
for  Windows  95, 98  and  ME. 

The  easiest  way  to  find  your  CD  keys  is 
by  using  tools  you  can  download  for  free. 
There’s  ViewKeyXP  (www.nwfusion.com, 
DocFinder:  4634)  and  the  Magical  Jelly 
Bean  Keyfinder  (DocFinder:  4635).  The 
former  works  only  with  Windows  XP  while 
the  latter  works  with  Windows  95, 98,  ME, 
NT4, 2000,  XP  and  Server  2003.  Keyfinder 
also  supports  changing  the  key  in  an 
installed  Windows  95, 98,  ME  or  XP  system. 
Magical  Jelly  Bean  Keyfinder  also  is  sup¬ 


posed  to  be  able  to  display  the  CD  keys  for 
Office  97  and  Office  XP  but  couldn’t  do  so 
on  one  of  our  desktop  machines.  But  we 
have  evidence  that  the  machine  is  horribly 
mangled  and  due  fora  rebuild,  or  termina¬ 
tion.  The  latest  version  of  Keyfinder  —  a 
beta  release  (DocFinder:  4636)  —  can  find 
the  keys  for  all  the  components  of  Office 
2003  and  let  you  modify  user  information. 

Another  informational  tool  worth  check¬ 
ing  out  is  Everest  from  Lavalys  Consulting 
Group.  Everest  comes  in  two  flavors:  Home 
Edition,  which  is  free,  and  Professional, 
which  sells  for  $30. 

Everest  is  a  system-analysis  tool  that  pro¬ 
vides  full  information  on  hardware  and 
software  (the  latter  is  limited  in  the  Home 
Edition),  along  with  data  on  DirectX,  over¬ 
clocking,  UPS  and  tape  drive  support.  But 
wait,  there’s  more!  There’s  also  diagnostics, 
benchmarks,  tweaking  features,  Web  links 
to  all  installed  application  and  driver 
providers,  and  a  built-in  hardware  data¬ 
base.  Everest  is  compatible  with  Windows 
XP  and  Windows  Server  2003,  produces 
reports  in  TXT,  HTML  and  MHTML  formats, 
and  is  localized  for  27  languages. 

The  Professional  version  also  provides 
XML,  CSV,  M1F  and  INI  reports;  visual  audit 
statistics;  database  connection  to  MS 
Access,  MS  SQL  Server,  MySQL,  Oracle, 


PostgreSQL,  Sybase,  Borland  Interbase  and 
Firebird;  secure  remote  connection  within 
an  IP  network;  remote  monitoring  of  anti¬ 
virus  databases,  network  traffic,  processes 
and  change  tracking;  and  statistics  analysis 
of  uptime  and  downtime.  Oh,  and  all  ver¬ 
sions  will  find  your  CD  key 

While  we  were  researching  key  location 
utilities  we  stumbled  across  another  cool 
utility:  nLite  (DocFinder:  4637),  which  lets 
you  create  customized  Windows  installa¬ 
tions  for  Windows  2000,  XP  and  2003.  NLite 
is  published  —  for  free!  —  by  Dino 
Nuhagic,who  lives  in  Croatia. 

Nuhagic  describes  nLite  as  “a  GUI  for 
permanent  Windows  component  removal 
by  your  choice.  After  removal  there  is  an 
option  to  make  a  bootable  image  ready  for 
burning  on  CD  or  testing  in  virtual 
machines.  So  with  nLite  you  will  be  able  to 
have  a  Windows  installation  CD  that  does¬ 
n’t  install, or  even  contain  on  CD,  unwanted 
components.” 

He  goes  on  to  point  out  that  “Maybe  you 
won’t  believe  it  at  first  but  it’s  not  easy  to 
not  install  what  you  don’t  want  when  it 
comes  to  Windows.  It  involves  many 
setup  files  to  be 


Quick  takes 
on  high-tech  toys 


and 


SimpleTech  launches  NAS  device  for  the  home 

SimpleTech  today  is  expected  to  enter  the  network  stor¬ 
age  market  with  the  launch  of  its  SimpleShare  Office 
Storage  Server,  a  network-attached  storage  device  aimed 
at  the  small  office/home  office  and  consumer  market. 
The  unit  will  come  in  two  capacities  (160G  bytes  for 
$300,  and  250G  bytes  for  $400),  and  is  scheduled  to  ship 
in  January. 

The  device  features  the  ability  to  auto-discover 
auto-configure,  so  you  don’t  need 
device  drivers  or  networking 
experience. Users  will  be  able  to 
access  files  and  folders  through 
any  Web  browser,  SimpleTech 
says.  Also,  SimpleTech’s  NAS- 
Finder  software  will  provide 
automatic  drive  mapping  and 
configuration  on  Windows 
platforms. 

The  NAS  device  will  include 
two  USB  ports  for  expandability  — 
meaning  a  user  could  attach  addi¬ 
tional  USB-based  external  hard 
drives.  The  system  also  will  have  a 
built-in  USB  print  server,  and  will  connect  to  a  network 
via  a  10/100  Ethernet  connection. The  system  is  designed 
to  save  space  by  standing  vertically  next  to  a  router. 

The  company  says  moving  files  from  a  PC-based  or 


SimpleTech's  NAS  device 
will  provide  automatic 
drive  mapping. 


direct-attached  external  hard 
drive  to  a  NAS-based  device 
lets  additional  devices  and 
users  access  the  files  without 
having  to  go  through  a  PC.  PDAs 
and  other  mobile  devices  with 
network  connectivity  will  be 
able  to  access  content,  such  as 
photos,  movies  and  music,  with¬ 
out  having  to  first  connect  to  a 
computer. 


It's  a  PDA!  No,  it's  a  laptop! 

Sony  last  week  announced  a  device  that  combines  the 
features  and  power  of  a  full-size  PC  with  the  portability  of 
a  PDA. The  new  Vaio  U  Ultra  Portable  PC  weighs  just  over 
a  pound  and  acts  like  a  PC  with  integrated  802.1  lb/g 
wireless  connectivity  and  the  ability  to  double  as  a 
portable  media  player.  The  notebook  is  scheduled  to  be 
available  next  month  at  SonyStyle  stores  and  other  retail¬ 
ers,  and  will  cost  about  $2,000. 

The  unit  has  a  5-inch  LCD  screen,  memory  stick  and 
Compact  Flash  media  slots  for  importing  files  or  photos, 
and  it  can  connect  to  a  fold-out 
external  keyboard  for 
more-traditional 
input.  It  will  run  on 
an  Intel  ultralow-volt- 
age  Pentium  M  proces¬ 
sor  and  uses 
Windows  XP  Pro¬ 
fessional  as  its 
underlying  operat¬ 
ing  system. 

Accessories  include  inner- 
ear  headphones,  a  remote 
control,  mobile  AC  adapter, 
and  a  VGA/Ethernet  adapter. 


edited  carefully  without  interfering  with 
basic  Windows  components.” 

We’re  excited  by  this  tool  and  plan  to  cre¬ 
ate  automated,  minimal  Window  installs  to 
lighten  our  testing  setup  overhead. 

Finally  this  week  we  have  a  tool  reminis¬ 
cent  of  Serence’s  KlipFolio,  a  utility  we  dis¬ 
cussed  a  few  weeks  ago.  Desktop  Sidebar 
from  Idea2  is  another  take  on  aggregating 
information  in  an  extensible,  structured, 
user  interface.  Hard  though  it  might  be  to 
believe,  Desktop  Sidebar  is  even  more 
ambitious  than  KlipFolio  in  the  range  of 
information  it  attempts  to  concentrate.  It  is 
also  free. 

Desktop  Sidebar  is  implemented  as,  you 
guessed  it,  a  sidebar  that  can  auto-hide  and 
sports  “panels.”  Panels  are  essentially  mini- 
applications.The  product  comes  with  pan¬ 
els  that  integrate  with  Outlook  for  calendar, 
tasks,  e-mail  and  notes,  RSS  newsfeed  dis¬ 
play  performance  monitor,  clock,  instant¬ 
messaging  support,  media  player,  quick 
launch  toolbar,  weather  display  search  bar 
and  stock  ticker . .  .and  the  list  of  add-ons  is 
enormous.  We  just  found,  it  and  it  looks 
promising.  Let  us  know  what 
you  think. 


Aggregate  your  thoughts  to 
gearhead@gibbs.  com. 
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The  Vaio  U  Ultra  Portable 
PC  doubles  as  a  portable 
media  player  and  can 
connect  to  an  external 
keyboard. 


The  IT-23M1U  desktop  dis¬ 
play  comes  with  a  TV  tuner. 

A  port  replicator  will  be 
able  to  recharge  the 
device  and  provide  for 
connections  to  other 
devices,  such  as  a  mouse, 
monitor,  hard  drive  and/or  an 
optical  drive. 

‘IT-TV’  merges  TV  with  PC  monitor 

Sharp  Systems  last  week  announced  the  IT- 
23M1U,  which  it  is  calling  an  “IT-TV”  The  device  is  a  23- 
inch  widescreen  LCD  desktop  display  that  also  includes 
a  TV  tuner  to  display  television  content.  The  display  is 
now  available  for  about  $1,500  through  Sharp’s  resellers 
and  Web  site  (http://store.sharpsystems.com). 

Features  include  picture-in-picture,  remote  control,  a 
550:1  contrast  ratio,  500  nits  of  brightness  and  a  response 
time  under  16  millisec,  Sharp  says.  It  has  HDTV  function¬ 
ality  for  the  reproduction  of  high-definition  images  and 
“movement-adaptive  digital  noise  reduction,”  which  aims 
to  improve  the  reproduction  and  sharpness  of  pictures  to 
reduce  signal  noise  at  the  edges  of  moving  objects.  It 
has  built-in,  10-watt  stereo  speakers,  and  uses  Virtual 
Dolby  Surround  (Pro  Logic  II)  technology  to  create 
3-D  sound  effects. 

The  system  is  being  touted  for  stock  traders  who 
want  to  keep  up  on  the  latest  news  reports 
while  using  the  extra  screen  space  for  mon¬ 
itoring  PC-based  news,  as  well  as  consumers 
who  want  to  use  it  as  a  way  to  merge  the 
computer  monitor  with  the  TV. 

Also  available  are  15-inch  (LL-15M1U,$450)  and  17-inch 
versions  (LL-M 1 7 1  MU,  $680). 

Shaw  can  be  reached  at  kshaw@nww.com. 


WHEN  YOU  STEPPED  AWAY 
FROM  YOUR  DESK,  A  WORM  WAS 
DETECTED,  QUARANTINED  AND 
ELIMINATED  BEFORE  ANYONE 
NOTICED  YOU  WERE  GONE. 


svo  Systems,  the  Cisco  Systems  logo  are  registered  trademarks  or  trademarks  of  Cisco  Systems,  Inc.  and/or  its  affiliates  in  the  US  and  certain  other  countries.  ©2004  Trend  Micro  Incorporated 

•eserved.  Trend  Micro  and  the  i-ball  logo  are  trademarks  or  registered  trademarks  of  Trend  Micro  Incorporated  All  other  company  and/or  product  names  may  be  trademarks  or  registered  trademarks  of  their  owners. 


Trend  Micro  and  Cisco  Systems —  working  together. 

Imagine  a  network  solution  so  advanced,  so  secure,  so  ingeniously  proactive, 

you  may  never  have  to  worry  about  an  outbreak  again. 

Find  out  more  at  www.trendmicro.com/cisco 
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ON  TECHNOLOGY 

John  Dix 

FGC  right 
in  sheltering 
VoIP  services 

The  FCC’s  decision  last  week  to  pull  rank  and  estab¬ 
lish  federal  control  over  VoIP  telephone  services 
was  a  good  and  necessary  move  that  can  only  help 
spur  the  development  and  acceptance  of  the  technology 
FCC  Chairman  Michael  Powell  made  good  on  his 
promise  last  month  at  the  Voice  on  the  Network  show  in 
Boston  when  he  said  it  was  “plain  wrong  to  see  VoIP 
through  the  lens  of  the  old  telecom  modeF’The  first  order 
of  business  was  to  relieve  VoIP  carriers  from  state-by-state 
regulation. 

The  commission  was  specifically  ruling  on  a  petition 
VoIP  pioneer  Vonage  filed  seeking  federal  preemption  of 
regulations  that  the  Minnesota  Public  Utilities  Com¬ 
mission  (PUC)  was  trying  to  impose. 

In  siding  with  Vonage,  the  FCC  ruled  that  VoIP  is  not  sub¬ 
ject  to  traditional  state  PUC  regulations: “This  commission, 
not  the  state  commissions,  has  the  responsibility  and 
obligation  to  decide  whether  certain  regulations  apply  to 
IP-enabled  services.” 

The  ruling  is  warranted  because  it  is  clear  we  are  mov¬ 
ing  to  a  packet  world  and  this  will  help  spur  the  transition 
by  making  it  easier  for  smaller,  innovative  players  like 
Vonage  to  keep  making  progress. That  progress  will,  in 
turn,  pressure  the  large  incumbents  to  respond  in  kind. 
Requiring  VoIP  players  to  deal  with  state  regulations 
would  simply  throw  a  wet  blanket  on  the  movement. 

There  is  work  yet  to  be  done  on  what  responsibilities 
VoIP  carriers  will  have  to  shoulder  in  terms  of  91 1  ser¬ 
vices,  universal  service  and  even  taxation,  and  the  com¬ 
mission  has  promised  to  start  addressing  these  in  its  IP- 
Enabled  Services  Proceeding. 

The  one  danger,  of  course,  is  that  large  incumbents  start 
calling  everything  VoIP  in  an  attempt  to  sidestep  current 
regulations  and  fees.  But  concerns  about  that  are  proba¬ 
bly  overstated  because  these  same  carriers  have  to  worry 
about  cannibalizing  their  revenue  base. 

Verizon,  for  example,  now  offers  a  broadband  VoIP  ser¬ 
vice  called  VoiceWing  that  costs  $34.95  per  month.  If  you 
use  it  with  Verizon’s  DSL  the  company  discounts  DSL  to 
$29.95  per  month,  but  you  still  have  to  pay  $15  for  an 
underlying  line.That  adds  up  to  $80,  which  is  only  about 
$10  less  expensive  than  Verizon's  regular  DSL/unlimited 
calling  package. There  isn’t  a  lot  of  cost  incentive  to 
change,  and  undoubtedly  that  was  the  intention. 

But  VoiceWing  positions  Verizon  for  the  future,  and  it 
can  play  the  rate  game  when  and  if  it  needs  to. 

As  Chairman  Pbwell  said  at  VON: “Some  say  there  is  a 
telephone  net  and  the  Internet. The  FCC  is  saying,  not  for 
that  much  longer” 

—  John  Dix 
Editor  in  chief 
jdix@nww.com 


Seeing  the  light 

Regarding  Mark  Gibbs’  BackSpin  column  “Various 
types  of  blindness”  (www.nwfusion.com,  DocFinder: 
4622):  Gibbs  should  not  apologize  to  those  mailing 
list  mental  infants  who  are  unable  to  set  up  a  prop¬ 
er  mailing  list.  I  have  worked  on  mailing  lists  for 
years  and  the  current  generation  of  acceptable  un¬ 
subscribe  options  is  1)  ability  to  unsubscribe  from  a 
Web  page  given  a  unique  URL  in  the  e-mail  sent  out; 
and  2)  ability  to  unsubscribe  by  forwarding  a  similar 
tokenized  “unsubscribe”  request  from  any  e-mail 
“from”  address. 

The  requirement  to  unsubscribe  from  the  exact 
e-mail  you  subscribed  from  is  problematic,  as  Gibbs 
notes,  to  anyone  using  an  alias.  It’s  also  very  1998. 
Gibbs  shouldn’t  shy  away  from  attacking  foolishness 
like  this,  or  allow  them  to  make  him  believe  that  he 
shares  in  any  blame  for  their  inadequacies. 

Rob  Hughes 
Boston 

In  his  column  “Various  types  of  blindness,”  Mark 
Gibbs  writes  that  “the  law  is  supposed  to  be  blind 
and  applied  equally.”  I’ve  never  heard  that.  I’ve  heard 
justice  is  blind,  which  is  a  judge  deciding  an  issue 
based  on  a  law.  But  the  laws  are  written  by  elected 
people  who  ran  campaigns  paid  for  by  supporters, 
so  laws  are  usually  written  to  benefit  those  support- 
ers.No  blindness  there  at  all.The  only  system  around 
this  is  the  old  Greek  one  where  legislators  are  cho¬ 
sen  by  lottery  Then  any  bad  laws  would  be  made 
based  on  their  own  prejudices  instead  of  the  preju¬ 
dices  of  the  folks  who  elected  them. 

Mike  Moxcey 
Computer  specialist 
USDA  APHIS  Wildlife  Services 
Fort  Collins,  Colo. 

E-mail  letters  to  jdix@nww.com  or  send  them  to  John  Dix.  editor  in 
chief,  Network  World,  118  Turnpike  Road,  Southborough,  MA  01772. 
Please  include  phone  number  and  address  for  verification. 


Regarding  “Various  types  of  blindness”:  Perhaps  in 
theory  there  is  no  difference  between  Microsoft 
and  spammer  Sanford  Wallace.  But  certainly  in 
implementation  there  is  significant  difference. 
Microsoft  is  doing  traditional  advertising  —  the 
same  kind  of  thing  that  a  detergent  manufacturer 
might  do  to  tout  its  product  as  better  at  getting 
your  clothes  cleaner  and  whiter  than  any  other. 

What  Microsoft  has  not  done  is  surreptitiously 
invade  my  home,  as  let  us  say  the  water  meter 
reader’s  assistant  might,  and  modify  the  program¬ 
ming  circuitry  of  my  clothes  washer,  then  send  me 
a  message  telling  me  that  I  need  a  super  gizmo 
that  they  happen  to  offer  that  can  solve  the  clean¬ 
ing  problem  I’m  having  as  a  result  of  their  modifi¬ 
cation  to  my  washer.  There  is  a  big  difference 
between  this  sort  of  behavior  and  that  of  tradition¬ 
al  advertising/marketing,  with  or  without  “spin.” 

Jack  Hodson 
Cleveland,  Ohio 

Getting  political 

Interesting  juxtaposition  on  the  back  page  of  the 
Oct.  25  issue  of  Network  World.  We  have  NetBuzz’s 
Paul  McNamara  remarking  on  the  negative  letters 
that  are  always  received  after  a  politics-related 
story  appears  in  a  technical  publication  (“Mixing 
politics  and  technology?’  DocFinder:  4624).  Above 
this,  we  have  BackSpin’s  Mark  Gibbs  questioning 
the  wisdom  of  a  technically  related  story  that 
appeared  in  a  general  publication  (Interestingly 
disturbing,”  DocFinder:  4633). 

Next  time  Network  World  gets  a  complaint  from 
some  pinhead  about  “staying  out  of  politics,”  maybe 
the  response  should  be  to  ask  if  they’ve  also  com¬ 
plained  to  The  New  York  Times  (or  whatever)  about 
“staying  out  of  technology’ 

Raan  Young 
Corvallis,  Ore. 


More  online!  www.nwftision.com  Find  out  what  readers  are  saying  about  these  and  other  topics.  DocFinder  4722 
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STAYINGCONNEGTED 

Edward  Horrell 

Ever-changing  technology,  dynamic  user 
needs  and  a  confusing  array  of  acro¬ 
nyms  make  selling  IT  products  and  ser¬ 
vices  tough  under  any  circumstances.  But  a 
large  part  of  the  problem  is  that  vendors 
need  to  update  their  selling  methods. 
Recently  I  hosted  a  seminar  for  vendors 
of  IT  products  and  services  dealing  with  how  IT  buyers  want  to  be 
sold  to. The  information  was  based  on  a  survey  of  major  IT  buyers 
in  the  Mid-South  and  how  they  wished  to  be  treated  during  the 
selling  process,  from  initial  contact  through  service.  The  results 
were  interesting. 

Of  the  50  survey  respondents,  about  half  stated  that  they  desired  ini¬ 
tial  contact  by  first-time  vendors  to  be  made  via  e-mail.  According  to 
the  survey,  more  than  half  of  the  respondents  found  cold  calls  to  be 
unacceptable.  (After  the  session,  one  vendor  told  me  about  his  sales 
meeting  that  morning,  in  which  his  group  was  reminded  to  make  10 
cold  calls  a  day.) 

Other  results  include: 

•  89%  of  the  buyers  want  to  get  to  know  their  vendors  personally 
(60%  want  this  to  be  done  over  lunch). 

•  70%  said  they  would  like  to  spend  less  time  with  prospective  ven¬ 
dors. 

•77%  said  that  trashing  other  vendors  was  unacceptable  and  that 
competitors  should  not  be  discussed  unless  the  buyer  brings  it  up. 

•  47%  said  pressure  selling  and  going  over  buyers’ heads  is  a  no-no. 
•  93%  of  the  buyers  don’t  expect  gifts,  but  68%  will  accept  them. 


Tough  selling  in  IT  these  days 


•  The  overwhelming  majority  thinks  service  is  worse  than  it  has 
ever  been. 

After  the  survey  results  were  presented,  attendees  heard  from  and 
questioned  a  panel  of  five  major  IT  buyers.The  gist  was  that  current 
IT  sales  and  marketing  techniques  are,  for  the  most  part,  not  what 
buyers  would  like  them  to  be. 

Basically,  IT  buyers’  problem  is  time,  or  rather,  lack  of  it.  As  such,  they 
resent  cold  calls  and  pressure  tactics.  Instead,  buyers  prefer  to  deter¬ 
mine  what  they  need  and  then  take  a  “we’ll  call  you”  approach. 

This  makes  for  tough  times  for  IT  sellers.Taught  for  years  by  aggres¬ 
sive  sales  managers  to  make  numerous  cold  sales  calls,  they  now  are 
hearing  from  their  market  that  this  is  “annoying”  and  “a  turnoff. ’’These 
buyers  prefer  intros  from  other  IT  professionals  and  easy-to-find  Web 
information  that  they  can  gather  themselves. 

So  what  are  IT  sales  folks  to  do?  Try  what  any  company  should  do 
to  find  out  what  their  customers  and  prospects  want:  ask.  Set  meet¬ 
ings  with  your  top  prospects  and  customers  and  find  out  how  they 
want  to  be  contacted  and  sold  to,  and  how  they  want  their  equip¬ 
ment  serviced.  From  initial  contact  through  contract,  find  out  what 
they  want. 

But  to  you  IT  buyers  who  might  be  thinking  “it’s  about  time,”  don’t 
get  too  excited.  IT  sellers  have  been  doing  things  “the  same  old  way” 
for  a  long  time,  so  don’t  expect  anything  to  change  overnight. 


Try  what  any 
company  should 
do  to  find  out 
what  customers 
and  prospects 
want:  ask. 


Horrell  is  an  independent  telecommunications  consultant ,  speaker 
and  author  in  Memphis ,  Term.  He  can  be  reached  at  edwardhor- 
rell@mindspring.com  or  via  his  Web  site,  www.edhorrell.com. 


REALITY  CHECK 

Thomas  Nolle 


Does  cheap  bandwidth  lead  to  offshoring? 


Let’s  say  you’re  a  carrier  planner  or 
equipment  vendor  product  architect. 
You  work  your  butt  off  to  develop  a  new 
scheme  to  reduce  the  cost  of  networking,  to 
create  inexpensive  bandwidth  forall.You  get 
rewarded,  right?  Maybe  not.  Your  invention 
might  cost  you  your  job,  and  a  lot  of  others 

their  jobs,  too. 

Everyone  knows  that  labor  costs  vary  considerably  throughout  the 
world.You  can  get  people  to  plant  crops,  harvest  and  pack  produce  a 
lot  cheaper  in  Chile  than  in  Florida,  for  example.  What  has  tended  to 
level  out  this  cost-of-labor  disparity  is  the  cost  of  transportation.  If  the 
Chileans  can’t  eat  all  their  own  fruit  (or,  because  of  low  wages,  can’t 
afford  to  buy  it),  they  can  ship  to  the  U.S.  only  if  the  shipping  costs 
don’t  more  than  offset  the  lower  labor  cost.  In  short,  transportation 
cost  is  a  barrier  to  “offshoring”  the  fruit  business. 

In  the  current  offshoring  debate,  we’re  not  talking  about  laborers’ 
jobs,  but  about  high-tech  jobs  that  have  been  rightfully  viewed  as  the 
future  of  the  U.S.  economy  As  in  fruit  “offshoring,”  transportation  cost 
—  in  this  case,  networking  cost  —  also  is  a  key  factor  in  the  move 
toward  high-tech  outsourcing. Ten  years  ago,  the  notion  of  running  a 
telemarketing  center  in  India  would  have  been  ridiculous.The  cost  of 
transferring  a  telemarketing  or  support  call  across  half  the  world 
would  have  paid  for  a  legion  of  workers  in  the  U.S.  But  bring  network 
cost  down  and  suddenly  the  economics  change,  and  that’s  what  has 
happened  ...and  will  continue  to  happen. 

If  network  costs  were  zero,  any  job  whose  duties  involve  projecting 
information  or  selling  via  telephony,  video  or  data  could  be  executed 
anywhere  where  suitable  labor  exists.  That  means  that  companies 
with  these  kinds  of  jobs  will  shop  them  to  the  regions  with  the  lowest 
labor  costs.  OK,  networking  isn’t  free,  but  it’s  getting  less  expensive  on 
a  cost-per-bit  basis,  and  the  place  this  hits  first  is  voice,  a  low-band¬ 
width  application.Voice-based  support  and  sales  is  thus  the  first  thing 


to  be  affected,  but  it  won’t  be  the  last. 

Software  development,  hardware  engineering,  project  management, 
accounting  and  many  other  jobs  are  just  as  vulnerable  to  cheap  labor 
if  the  work  offshore  employees  or  contractors  do  can  be  coordinated 
inexpensively  and  efficiently  with  the  on-shore  company  personnel 
and  its  customers.  Companies  might  resist  having  software  developed 
8,000  miles  away  because  they’d  feel  they  were  losing  control  of  the 
process.  Would  they  feel  the  same  way  with  real-time  video  links  to 
those  remote  resources?  With  instant  data  collaboration?  All  that 
holds  back  that  level  of  techno-integration  is  the  cost  of  the  network¬ 
ing  —  the  same  cost  that’s  falling  like  a  rock  in  today’s  market.The  bet¬ 
ter  we  make  networks,  the  less  network  services  cost,  the  lower  the 
barriers  to  exporting  technical  jobs.  Sad,  but  true. 

We  can  argue  that  the  offshoring  process  is  self-leveling,  and  that’s 
true  to  a  degree.  Prosperity  and  development  elsewhere  will  narrow 
the  labor  cost  advantages  and  reduce  the  flow  of  jobs.  We  can  argue 
that  jobs  will  be  created  here  by  the  effect,  and  that’s  also  somewhat 
true.  The  building  of  the  infrastructure  to  support  offshoring  might 
well  consume  American  products.  We  can  argue  that  lower  prices  and 
higher  profits  will  result  in  the  U.S.,and  again  it’s  sort  of  true.  But  how 
much  has  Chilean  fruit  caused  fruit  prices  to  fall?  Aren’t  some  of  the 
low-labor-cost  countries  creating  their  own  network  equipment  and 
computers?  How  many  jobs  have  to  be  lost  for  this  “self-leveling”  thing 
to  be  unimportant?  Answer:  Only  one  —  yours. 

We  aren’t  going  to  put  the  network  cost  genie  back  in  the  bottle,  so 
the  only  solution  is  productivity.  High-value  workers  are  competitive 
when  they  produce  so  much  more  (or  better)  goods  that  their  pre¬ 
mium  cost  of  labor  is  justified.  It  seems  that  after  the  bubble,  Wall 
Street  and  Main  Street  both  distrust  technology. They  will  have  to  trust 
it  again,  for  our  collective  good. 

Nolle  is  president  of  CIMI,  a  technology  assessment  firm  in  Voorhees, 
N.J.  He  can  be  reached  at  (856)  753-0004  or  tnolle@cimicorp.com. 
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have  to  be  lost 
for  this  ‘self¬ 
leveling'  thing  to 
be  unimportant? 


Where  14-billion  Web  addresses  and  emails  get  directed. 

Where  2.7-billion  phone  connections  get  routed. 
Where  3,000  global  enterprises  get  secured. 
Where  $100-million  in  online  commerce  gets  transacted. 
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VeriSign; 

Where  it  all  comes  together. 


Billions  of  times  each  day,  the  world  interacts  with  a  company 
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munications.  VeriSign."  Through  our  Intelligent  Infrastructure 
Services,  we  enable  businesses  and  individuals  to  find,  connect, 


secure,  and  transact  across  today’s  complex  Internet,  telecom, 
and  converged  networks. 
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.  We  operate  the  systems  that  manage  .com  and  .net,  handling 
-  14-billion  Web  addresses  and  emails  every  day.  We  run  one  of  the 
largest  telecorp  signaling  networks  in  the  world,  enabling  services 
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such  as  cellular  roaming,  text  messaging,  caller  ID,  and  multi- 
JK&IU.-V  media  messaging.  We  manage  network  and  user  security  for  over 
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3,000  global  businesses  and  400,000  Web  sites.  And  we  handle 
over  30  percent  of  all  e-commerce  transactions  in  North  America, 
processing  $100-million  in  daily  sales.  As  next-generation  networks 
emerge  and  converge,  VeriSign  will  be  there,  deploying  the 
Intelligent  Infrastructure  Services  necessary  for  everything  from 
RFID-enabled  supply  chains  to  inter-enterprise  VoIP  to  mobile 
and  rich  media  content  distribution. 


Whether  you’re  a  telecom  carrier  looking  to  rapidly  deploy  new 
services;  a  Fortune  500  enterprise  needing  comprehensive, 
proactive  security  services;  or  an  e-commerce  leader  wanting 
to  securely  process  payments  and  reduce  fraud,  we  can  help. 
We’re  VeriSign.  Where  it  all  comes  together.™ 


www.VeriSign.com 

Download  now:  Free  white  paper  on  Intelligent  Infrastructure  Services 
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he  Heisenberg  Uncertainty  Principle  of  quantum  mechanics  says  that  the  act  of  observing 
changes  the  outcome.  So  it  is  with  the  extended  enterprise  —  the  act  of  supporting  busi¬ 
ness  relationships  with  networked  systems  changes  those  relationships. 

Changing  relationships  are  shaping  next-generation  technology  decisions  in  areas  like  por¬ 
tals,  the  service-oriented  architecture  (SOA)  and  integration  platforms.  As  affordable  Web  ser¬ 
vices  technologies  take  hold,  letting  even  the  smallest  of  businesses  link  up,  global  industry¬ 
wide  trading  ecosystems  will  emerge.  Mega  databases  run  by  third-party  hubs  will  store  vast 
amounts  of  data  on  global  ecosystem  operations,  enabling  forecasting  on  a  scale  never  before 
possible.  If  a  virus  slows  Asian  production,  for  example,  Eastern  European  factories  will  know 
immediately  that  they  must  compensate  to  satisfy  an  uptick  in  orders  from  North  America. 

Where  such  tight  integration  eventually  will  lead  the  business  world  in  the  decades  to  come 
remains  anyone’s  guess.  But  the  trajectories  of  leading-edge  extended  enterprises  offer  the 
industry  a  glimpse  of  that  path.  Today  companies  have  begun  shifting  their  focus  from  cus¬ 
tom  external  integration  efforts  to  internal  rollouts  of  standards-based  technologies.  By 
revamping  themselves,  they  expect  to  ease  the  next  generation  of  external  integration  pro¬ 
jects.  From  this  point  of  tightly  integrated  operations  will  evolve  new  business  relationships 
based  on  unprecedented  trust  and  instantaneous  communication.  In  the  stage  beyond,  those 
relationships  would  grow  into  new  organizational  structures,  such  as  the  virtual  company. 


The  act  of  connecting  to  your  business 
partners  is  profoundly  influencing  the 
very  nature  of  those  relationships. 


The  uncertainty  principle 

The  act  of  connecting  to  your  business  partners  and 
customers  is  profoundly  influencing  the  very  nature  of 
those  relationships.  SEE  STORY,  AT  RIGHT 


An  end  to  the  VPN  blues 

National  Gypsum  wins  the  2004  Extended  Enterprise 
Innovator  Award  for  constructing  a  massive  VPN  that 
pushes  SSL  remote  access  across  the  board.  PAGE  56 


Stopl  Access  restricted 

You  can  make  your  extended  enterprise  constituents  take 
security  as  seriously  as  you  do.  Here's  how.  PAGE  58 

A  deep-rooted  legacy  of  access 

Even  as  Web  services  grow,  they’ll  never  completely 
choke  out  terminal-based  remote  access.  PAGE  62 

Going  nowhere 

Despite  years  of  promises,  enterprise  application  vendors 
have  yet  to  fully  embrace  mobility.  PAGE  68 

signature  sip  oil:  Hallmarks  of  the  'digital  organization' 

Respected  MIT  economist  Erik  Brynjolfsson  explains 
how  you  can  get  the  most  bang  for  your  extended 
enterprise  buck.  PAGE  72 

Extended  Enterprise  online 

Visit  www.nwfusion.com/ee/2004/  for: 

•  More  stories. 

•  Research  centers  on  security,  Web  infrastructure, 
remote  access  and  more. 

•  Case  studies  and  insights  from  your  peers. 

The  Signature  Series 

The  Extended  Enterprise  Issue  is  one  of  six  bimonthly 
special  issues  providing  insights,  opinions  and  informa¬ 
tion  on  the  biggest  trends  shaping  the  networked  world. 
Watch  for  the  Power  Issue,  coming  Dec.  27. 


Companies  within  the  aerospace,  automotive,  finance,  high-tech,  human  resources  arid  retail 
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Info  sharing 


spurs  trust,  spurr¬ 
ing  partners  to  invent 
new  business  practices 
between  them. 


Smallest  companies 
connect  to  hubs,  which 
link  to  larger  partners. 


Collaborative  relationships  bubble 
up  all  overthe  supply  chain. 


industries  have  created  some  of  the  most  cutting-edge  extended 
enterprises  today  They  already  are  seeing  new  business  rela¬ 
tionships  develop. 

For  example,  in  a  multiphase,  multimillion-dollar  project  of 
which  the  first  phase  will  be  completed  by  year-end,  United 
Airlines  has  begun  building  an  advanced  content  management 
system  for  its  many  vendors’  plane  maintenance  documents. 
Based  on  the  Enigma  3C  Platform  from  Enigma,  the  content 
management  system  will  eliminate  the  last  vestiges  of  paper 
manuals  used  by  its  staff  mechanics  and  contract  maintenance 
facilities  while  improving  content  integration.  When  an  engine 
or  parts  manufacturer  modifies  maintenance  manuals,  the  sys¬ 
tem  automatically  will  update  the  data  for  access  by  any 
mechanic  who  needs  it.  United  will  tightly  integrate  and 
hyperlink  maintenance  manuals  and  data  from  the 
aircraft  parts  vendors,  allowing  mechanics 
to  move  from  one  manual  to  another  re-  __ 

gardless  of  which  parts  maker  ere-  cPi  0.0^ 

ated  the  document,  says  Greg  ^ 

Hall,  senior  vice  president,  •■<=,  6'^ 

maintenance  and  engin- 
eering  for  United  in  Chicago. 

This  is  one  of  the  many  ways 
United  is  integrating  systems  with  its 
business  partners  —  from  the  shar¬ 
ing  of  computer-aided  designs 
via  aircraft  maker  Boeing’s  por¬ 
tal  to  chips  that  offer  engine 
maker  Pratt  &  Whitney  a  run¬ 
ning  stream  of  data  on 
engines  as  they  fly  Such  sys¬ 
tems  are  changing  the  way 
United  views  its  partners, 
says  Greg  Taylor,  director  of 
applications  development 
at  United,  the  IT  executive 
working  with  Hall  to  im¬ 
plement  the  Enigma  system. 

“I  view  it  as  creating  the  vir¬ 
tual  company  All  your  vendors 
are  in  effect  part  of  your  orgapi 
zation  —  they  are  combined 
through  technology  and  through  thg. 
exchange  of  data.  You  are  extending 
your  ability  as  a  business  to  a  much 
broader  spectrum, ’’Taylor  says. 

Doubling  back  for  SOAs 

The  trajectory  of  extended  enterprise  development  is  not 
the  bell  curve  normally  associated  with  technology  adoption. 
After  gaining  experience  interconnecting  with  their  partners, 
companies  have  begun  doubling  back  to  update  their  own 
technology  innards  to  speed  and  ease  their  next  extensions.This 
need  for  standardized  end-to-end  integration  is  the  true  driver  of 
the  SOA  and  why  this  flavor  of  it  will  succeed, some  experts  say 
The  Yankee  Group  estimates  that  by  November  2003,  approxi¬ 
mately  half  of  Fortune  1000  companies  had  extended  connec¬ 
tions  to  business  partners.  It  further  finds  that  while  only  up  to 
10%  of  the  Fortune  1000  will  have  deployed  Web  services  by 
2004,  more  than  80%  will  have  begun  piloting  the  technology  by 
year-end.  Looking  globally  Gartner  predicts  that  most  of  the 
world’s  largest  companies  will  have  adopted  SOAs  by  2007. 

Frustration  over  first-phase  extended  enterprises  is  driving 
the  interest  in  end-to-end  standards-based  integration  —  the 
ultimate  outcome  of  Web  services  and  the  SOA,  says  Bob 
Sutor,  director  of  WebSphere  infrastructure  software  for  IBM. 
Companies  are  “tired  with  mucking  with  the  plumbing”  every 
time  they  need  to  integrate  systems,  internal  or  external,  he 
says.  With  work  in  progress  for  areas  such  as  the  enterprise  ser¬ 
vice  bus,  a  connectivity  layer  and  support  for  workflow  of  busi- 
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FUTURE 


ness  processes,  the  SOA  movement  is  busy  creating  end-to-end  stan¬ 
dards,  Sutor  says. 

At  Pratt  &  Whitney  the  extended  enterprise  vision  hangs  on  complete 
integration,  says  Colin  Karsten,  manager  of  IS  programs  at  the  East 
Hartford,  Conn.,  company  Last  month,  Karsten  completed  an  upgrade 
of  P&W’s  4-year-old  portal  from  a  basic  content  aggregator  to  the 
Enterprise  Web  suite  from  Plumtree  Software.  To  Karsten,  the  new  por¬ 
tal  acts  much  like  an  SOA,  providing  a  standard  Web  interface,  back  end 
and  security  mechanism. 

“We’re  touching  employees,  partners,  customers  and  suppliers  all 
through  this  interface,”  he  says.  “A  portal,  as  defined  as  nothing  more 
than  a  security  wrapper,  gives  these  really  complex  enterprises  a  way  to 
identify  themselves.”  If  P&W  needs  to  do  “something  digital”  with  its 
business  partners, “there’s  no  question,  they  go  to  the  portal  and 
do  it  there,”  he  says. 

If  all  partners  are  doing  Web  services  together, 
then  “extending  yourself  to  your  customers 
and  suppliers  is  easier/  Karsten  says.  For 
instance,  P&W  had  long  employed 
V  At*  electronic  data  interchange  (EDI) 

-  to  link  with  its  largest  partners, 

such  as  aerospace  metal  giant  Alcoa, 
but  had  no  similar  way  of  reaching  the 
small  companies  making  one  part  in  one 
factory  The  new  portal  solves  this  prob- 
lem.“Every  supplier  is  on  it;  they  can’t 
ship  until  they  log  on,”  he  says. 

Plus,  the  portal  uses  Web  services  to 
link  up  with  EDI-based  processes. 
“The  minute  an  EDI  order  hits  a  sys¬ 
tem,  all  customers  can  log  on  to  the 
portal  and  see  the  status  of  their 
parts  —  which  they  couldn’t  do 
before,”  Karsten  says. 

While  P&W  now  offers  this  inte¬ 
grated  view  to  many  customers,  the 
first  implementation  took  place 
about  a  year  ago  for  United  Parcel 
Service,  for  which  P&W  builds  and 
maintains  airplane  engines,  Karsten 
says.  “We  deliver  all  of  the  UPS  engine 
overhaul  records  through  the  portal  out 
to  UPS  —  thousands  of  pages  of  documen¬ 
tation.  Now,  what’s  beautiful,  is  it  all  gets 
archived,  so  UPS  now  has  all  its  records  from 
birth  of  engine  to  redesign  —  and  doesn’t  have  to 
worry  about  record  keeping,”  he  says. 

Karsten  sees  the  extended  enterprise  platform  built  on 
Web  services  as  the  road  to  “federation,”  meaning  data  is  stored, 
managed  and  accessed  at  the  point  where  it  is  created,  no  matter  which 
business  partner  creates  it/There  should  be  no  reason  you  ever  have  to 
replicate  the  stuff.  Web  services  is  essential  as  we  move  forward.” 

Many  routes 

Even  as  enterprises  work  to  standardize  on  middleware  and  applica¬ 
tion  layer  connection  technologies,  network  executives  will  continue  to 
face  several  design  choices  for  the  physical  connection:  1)  provide 
direct  connections,  2)  build  custom  supply-chain  hubs  or  3)  use  out¬ 
sourced  hubs.  Most  will  use  all  three,  and  this  connectivity  piece  will 
remain  a  primary  focus  for  IT  expenditure,  research  suggests.  In  2003,  a 
year  when  technology  spending  growth  was  squeezed  to  3.7%,  75%  of 
that  new  spending  was  dedicated  to  the  extended  enterprise  in  initia¬ 
tives  to  “connect,  synchronize,  coordinate  and  collaborate  with  other 
enterprises  across  the  global  supply  chain, ’’says  The  Yankee  Group  in  its 
report,  “Application  and  Integration  Technology  Battle  Moves  to 
Enterprise  Edge  and  Beyond.”Most  of  those  initiatives  involved  building 
individual  connections. 

Kevin  McGee,  business-to-business  systems  technical  lead  for  Borders 
Group  in  Ann  Arbor,  Mich.,  knows  all  about  building 

See  Enterprise,  page  54 


The  SecureLinx  product  family  is  a  complete  data  center  solution 

>  SecureLinx  SLC  -  Console  management  (shown) 

>  SecureLinx  SLK -  Remote  KVM™  over  IP 

>  SecureLinx  SLP- Power  management 


SecureLinx 


It’s  a  precaution  until  you  need  it 


i 


When  you  absolutely  can’t  get  to  your  IT  equipment... 
get  there  anyway.  The  data  center  is  the  lifeblood  of  your 
business.  Even  a  short  period  of  downtime  can  be  a  major 
problem,  so  when  something  does  go  wrong  you  need  to 
be  able  to  address  it  instantly.  With  SecureLinx  SLC,  you 
can  minimize  or  eliminate  downtime  and  keep  your 
business  afloat! 

SecureLinx  SLC  console  managers  from 
Lantronix  give  you  consolidated  access  so 
you  can  control,  diagnose  and  repair 
virtually  everything  in  the  data  center  via  their  serial  ports. 
You  gain  total  out-of-band  management  of  all  your 


Linux,  Unix  or  Windows®  2003  servers  (as  well  as  routers, 
switches,  telecom  equipment  and  building  access  devices). 

And  you  can  access  it  from  anywhere  over  the  Internet  - 
even  if  the  network  is  down  -  with  the  confidence  of  the 
highest  level  of  security  available.  SecureLinx  SLC  features 
SSL  and  SSH  encryption.  Plus,  it’s  the  only 
console  manager  with  a  NIST-certified 
implementation  of  Advanced  Encryption 
Standards*  Best  of  all,  it’s  easier  and  less 
expensive  to  implement  than  you  may  think. 

Don’t  let  your  data  center  ever  go  under! 

Call  Lantronix  today. 


Visit 

www.lantronix.com/info/ad001c/ 

for  your  free  console 
management  white  paper. 


LANTRONIX' 


Network  anything.  Network  everything 
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individual  connections.  Borders,  which  owns  850 
Waldenbooks  stores  and  roughly  900  Borders  retail 
outlets,  is  expanding  at  a  rate  of  25  to  50  new  stores  per 
year,  mostly  internationally  McGee  says.  Although  Bord¬ 
ers  acquired  Waldenbooks  some  10  years  ago,  merging 
the  mainframe/EDI  back  ends  of  the  two  operations 
has  been  slow  going,  in  part  because  of  rapid  expan¬ 
sion,  McGee  says.  While  the  retail  industry  —  led  by 
Wal-Mart  —  is  among  the  most  advanced  in  extended 
enterprise  adoption,  Borders’  primary  trading  partners 
—  publishers  —  are  among  the  slower  adopters. 

McGee  estimates  Borders  has  some  form  of  electron¬ 
ic  data  exchange  with  about  500  of  the  thousands  of 
suppliers  —  such  as  tiny  boutique  publishers,  music 
labels  and  gift  product  vendors  —  that  do  business 
with  it.  For  decades,  EDI  has  made  up  the  bulk  of  the 
connections,  but  over  the  last  three  years,  he  has  ex¬ 
tended  to  partners  via  far  more  flexible  Web  technolo¬ 
gy  He  has  supplemented  EDI  connections  by  building 
out  what  he  describes  as  “peer-to-peer,  real-time”  links 
with  his  most  strategic  suppliers,  about  50  all  told. 

His  extended  enterprise  platform  for  these  links  uses 
IBM  WebSphere  and  Cyclone  Commerce  software.The 
extended  enterprise  has  let  the  bookseller  offer  its  cus¬ 
tomers  new  services  not  possible  in  the  batch-mode 
EDI  environment.  For  instance,  an  employee  can  check 
availability  from  publishers  and  distributors  in  real 
time  for  an  out-of-stock  book,  and  then  place  an  order 
for  delivery  to  a  customer’s  home.  Such  a  transaction 
moves  from  the  store  over  the  WAN  to  the  WebSphere 
server  in  Ann  Arbor,  then  over  the  Internet  to  the  sup¬ 
pliers’  systems  in  a  matter  of  seconds,  McGee  says. 

For  its  double-back  move,  Borders  is  rolling  out  an 
ERP  system  to  allow  it  to  better  integrate  the  Walden¬ 
books’ and  Borders’ back  ends,  and  support  even  more 
widespread  real-time  transactions. 

But  to  achieve  the  fully  connected  ecosystem, 
McGee  is  encouraging  the  smaller  suppliers  to  link  up 
through  a  trading  hub  run  by  a  third-party  value  added 
network  (VAN)  such  as  Global  exchange  Services 
(GXS).“We  literally  have  thousands  [of  suppliers]  in 
various  segments  that  we  are  dealing  with  in  the  mode 
of  fax  and  paper  or  snail  mail,”  he  says.“In  terms  of  our 
medium-  to  small-business  [suppliers] ,  we  intend  to  go 
through  a  VAN  or  a  hub,  or  a  hub  to  hub.” 


VANs  are  readying  themselves  for  the  role.  GXS 
recently  rolled  out  Trading  Grid,  a  real-time  trading  hub 
that  supports  Web  services.  While  GXS  will  continue 
performing  VAN  services  like  data  translation,  Trading 
Grid  lets  trading  partners  connect  their  ERP  systems  to 
the  hub,  and  also  lets  partners  monitor  transactions, 
mine  data  and  handle  workflow  exceptions. 

McGee  expects  such  hubs  to  act  as  extended  enter¬ 
prise  application  service  providers,  allowing  smaller 
companies  affordable  connectivity  because  they  can 
purchase  the  infrastructure  as  a  service  (see  story 
below).  “Here’s  where  the  GXS  comes  into  it:  Even 
though  the  business  will  decide, ‘Yeah,  we  want  to  con¬ 
nect,’  sometimes  it  doesn’t  have  the  infrastructure  or 
the  integration  skills  to  do  it,”  he  says. 

Rowland  Archer,  CTO  of  GXS,  contends  that  smaller 
businesses  have  begun  to  realize  the  need  for  joining 
the  extended  enterprise.  He  offers  the  auto  parts  indus¬ 
try  as  an  example.  Whereas  thousands  of  specialized 
parts  makers  exist  for  after-market  auto  upgrade  prod¬ 
ucts  —  rims,  steering  wheels,  roll  bars  —  prior  to  the 
extended  enterprise,  only  the  largest  of  them  could 
afford  to  invest  in  electronic  connections.  With  stan¬ 
dardized  technology  and  big  retail  partners  wanting 
all  suppliers  to  connect,  hubs  will  implement  workflow 
rules  —  such  as  requests  for  bids  —  for  all  suppliers, 
regardless  of  size,  “and  that  becomes  a  level  playing 
field  which  allows  wide  participation,”  he  says. 


The  extended  enterprise  principle 

No  matter  the  progress  of  the  last  few  years,  the  ex¬ 
tended  enterprise  is  still  in  Phase  l.The  next  phase  is 
leading  to  far  greater  changes  than  cheaper,  speedier 
communications.  It  is  leading  to  new  business  organi¬ 
zational  systems,  says  Erik  Brynjolfsson,  professor  and 
director  of  the  Center  for  eBusiness  at  MIT.  Industries 
that  always  have  operated  under  traditional  business 
hierarchies  will  become  virtual  companies.  In  a  virtual 
company  people  join  on  a  project-by-project  basis  and, 
through  outsourcing,  might  work  for  different  entities, 
even  if  they  sit  side  by  side.  (See  related  story  page  72.) 

Extended  enterprises  are  redefining  the  notion  of 
roles,  says  Guidot  Jouret,  who,  as  senior  director  of  Cis¬ 
co’s  Internet  Business  Solutions  Group,  is  responsible 
for  the  vendor’s  extended  enterprise.  Because  network 
connections  let  businesses  share  more  data,  they  grow 
to  understand  each  other,  and  that  creates  trust.  Trust 
then  helps  suppliers  to  specialize  in  highly  specific 


niches  for  their  partners  while  concurrently  reaching 
out  to  a  global  customer  base,  Jouret  says.  “This  leads 
to  interesting  forms  of  collaboration,  ranging  from 
‘coopetition,’ where  you  cooperate  with  a  division  with¬ 
in  an  erstwhile  competitor,  to  ‘schizophrenic  design,’ 
where  you  carry  out  R&D  for  customers  who  are  com¬ 
petitors.  So  you  segment  your  organization  into  distinct 
personalities  using  physical  and  IT  security  to  protect 
your  customers’  intellectual  property/’ he  explains. 

Examples  of  such  new  relationships  abound  outside 
the  high-tech  industry  too,  says  Michael  Schmitt,  execu¬ 
tive  vice  president  for  supply-chain  vendor  Ariba.  He 
tells  of  a  customer  that  bought  a  lot  of  pump  seals  for 
pumps  used  in  its  manufacturing  facilities  nationwide. 
After  bringing  its  favored  pump  seal  supplier  onto  its 
extended  enterprise  to  reduce  transaction  costs,  the 
company  asked  the  pump  seal  maker  to  help  it  reduce 
the  number  of  replacement  seals  it  needed  to  buy 

Asking  a  supplier  to  find  ways  to  deliver  less  product 
is  not  usually  part  of  the  20th  century  business  rela¬ 
tionship.  But  this  supplier,  linked  as  it  was  to  the  ex¬ 
tended  enterprise,  viewed  the  request  as  a  way  to  in¬ 
crease  its  favored  status.  It  knew  from  buying  patterns 
that  the  customer  was  replacing  pump  seals  at  plants 
in  cold-weather  locations  twice  as  fast  as  at  plants  in 
warm-weather  areas.The  supplier  suggested  insulating 
around  the  cold-weather  pumps  and  training  facilities 
managers  on  how  to  avoid  blowing  out  seals.The  cus¬ 
tomer  increased  mean-time-between-failures  on  pump 
seals  by  60%  and  hired  the  seal  vendor  to  perform  the 
training,  Schmitt  recounts. 

More  amazing  is  the  thought  of  how  business  will 
change  with  its  next  incarnation  of  the  extended  enter¬ 
prise:  the  global  trading  platform.  Once  all  businesses 
are  connected,  imagine  a  database  at  the  GSX  hub 
holding  aggregated  trading  data  on  an  entire  global 
marketplace,  GSX’s  Archer  says.  Now  imagine  mining 
that  data  for  an  instantaneous  global  view  of  the  entire 
industry  ecosystem.While  Archer  is  careful  to  point  out 
that  individual  trading  data  always  would  remain  pro¬ 
tected,  he  notes  that  the  mining  of  the  aggregate  could 
take  business  to  that  real-time  enterprise  goal.  “You 
agree  to  share  your  data  [with  the  aggregate]  .then  you 
can  see  the  aggregate.  It’s  an  intriguing  possibility  When 
trying  to  squeeze  that  last  2%  out  of  supply  chain, you’ll 
have  to  go  there,”  he  says. 

Observing  the  global  ecosystem  will  no  doubt 
change  its  future,  too.  ■ 


Sun  COO  Jonathan  Schwartz  shares  his  vision 
on  tfse: future  of:  outsourced,,  networked  services 


cal  requirements  for  much  of  their  IT  infrastructures  and 
applications,  be  it  a  Linux  grid  cluster  or  a  salesforce 
automation  package.  With  nearly  identical  needs,  out¬ 
sourcing  the  grid  to  a  service  provider  (which  Sun  aims  to 
be,  charging  $1/CPU  hour)  or  an  ASP  makes  economical 
sense,  he  says. 

Schwartz  views  outsourcing  as  a  method  of  pushing  an 
increasing  variety  of  IT  services  “into  the  network,”  he  says, 
meaning  they  are  conducted  elsewhere  and  served  to  the  enter¬ 
prise  via  a  network  iink.  Businesses  wiil  always  hold  some  IT 
close  to  their  chests  labeled  as  strategic.  However,  he  contends 
that  line  of  inside/outside  will  move  so  that  most  IT  services  are 
considered  outside  (and  therefore  eligible  to  be  outsourced)  as 
more  networked  services  become  available. 

Obviously,  vendors  like  SAP  and  Oracle  evangelize  the  oppos 
ing  viewpoint  that  businesses  want  more  internal  customization 
as  long  as  they  can  wrap  their  processes  with  standardized 
interfaces  such  as  Web  seivices. 

-  JULIE  BORT 


w V  ••  THE  DAY  WHEN  THE  extended  enterprise  becomes  a  giant 
-.s.-T interconnected  global  trading  marketplace  is  also  the  day  no 
|tf/  %  \  perimeter  exists.  During  the  interim,  the  perimeter  will  be  moving 
rd,  so  that  network  executives  will  begin  viewing 
>gy  as  being  mission  critical  to  their  business,  envi- 
an  Schwartz,  COO  of  Sun. 
dints  to  the  success  of  application  service  provider 
'S  such  as  Salesforce.com  and  human  resource 
such,  as  Exult  (purchased  by  Hewitt  Associates  last 
;e  modei;  how  businesses  can  gain  huge  efficiencies 
their  processes  to  adapt  to  that  of  the  outsourcer 
sharing  the  cost  among  many  users.  Schwartz  con- 
bSt  of  today’s  businesses  already  have  nearly  identi- 
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National  Gypsum  wins  the  2004  Extended  Enterprise 
Innovator  Award  for  constructing  a  massive  VPN  that 
pushes  SSL  remote  access  across  the  board. 


■ 


THE  WINNER'S  PLATFORM 


■  BY  TIM  GREENE 

t  National  Gypsum,  a  leading  wallboard  manufacturer,  the  corporate  mission  is  to  provide  “excel¬ 
lence  across  the  board.” 

Striving  to  meet  this  corporate  standard  has  put  Mike  Brannon,  senior  manager  of  e-commerce, 
on  top  of  the  latest  trends  and  technologies  for  extending  access  to  the  enterprise.  Of  late,  that  has 
meant  embracing  SSL  VPN  technology  while  ousting  a  legacy  IPSecVPN.The  SSL  VPN  has  become 
the  basis  of  a  secure,  easy  and  cost-effective  extended  enterprise  for  thousands  of  users.  Launched 
in  2002  with  a  price  tag  of  $60,000,  the  SSL  VPN  has  been  expanded  today  to  include  new  infor¬ 
mation  delivery  options,  such  as  speech  access  and  Web  services,  he  says. 

These  latest  efforts  culminate  more  than  five  years  of  work  National  Gypsum  has  put  toward 
extending  the  enterprise.  In  the  process,  the  number  of  individuals  who  can  tap  business  data  and 
applications  remotely  has  grown  from  150  employees  to  more  than  9,000  people  including 
employees,  retailers  and  shipping  companies.The  company  is  reaping  the  benefits.“In 
a  highly  commoditized  industry  we  have  created  strong  preference  for  our  product 
via  improved  customer  service  and  dramatically  increased  customer  service  respon¬ 
siveness  and  availability  of  delivery  information,”  Brannon  says. 

National  Gypsum  wins  our  2004  Extended  Enterprise  Innovator  Award  for  vision¬ 
ary  use  of  emerging  connection  technologies  to  better  customer  relationships. 


Basic  building  block 

National  Gypsums  transformation  into  an  extended  enterprise  started  in  1997.That’s 
when  the  company  set  up  an  advanced  call  center  in  the  headquarters’  city  of 
Charlotte,  N.C.,  and  started  transitioning  from  paper  orders  and  invoices  via  fax  and 
mail  to  online  order  entry  and  invoicing.  Rather  than  dealing  with  a  local  sales  office 
via  paper,  customers  began  conducting  business  with  the  call  center’s  Web-based 
agents.  National  Gypsum  completed  the  transition  from  the  regional  offices  to  the 
national  call  center  in  2001  and  now  delivers  86%  of  invoices  electronically  with  a  goal 
of  soon  eliminating  all  paper  in  its  invoicing  process,  Brannon  says. 

In  the  next  phase  of  its  extended  enterprise  evolution,  National  Gypsum  decided 
to  give  sales  representatives  remote  access  so  they  could  place  orders,  check  invoic¬ 
es  and  track  shipments  firsthand. This  project  began  with  a  dozen  representatives  in 
Florida  using  well-established  remote-access  gear  from  3Com  and  toll-free  number  dial-in. 

Because  of  the  remote  access,  National  Gypsum  no  longer  needed  to  maintain  as  many  physical 
sales  offices  and,  by  this  year,  had  shuttered  67,  Brannon  says.This  eliminated  rent,  heat  and  electric 
bills  and  in  some  cases  taxes  by  removing  the  company’s  physical  presence  from  certain  states  alto- 
gether.The  company’s  150  sales  agents  became  teleworkers,  which  in  turn  set  off  successive  deploy¬ 
ments  of  three  different  remote-access  technologies  as  National  Gypsum  sought  new  technologies 
to  meet  their  growing  needs,  he  says. 

Initially  National  Gypsum  outfitted  the  salespeople  with  laptops  and  had  them  dial  via  a  toll-free 
number  to  a  3Com  Total  Control  remote-access  server  with  16  inbound  lines.The  sales  staff  down¬ 
loaded  their  e-mails,  then  logged  off  to  read  the  e-mails  and  write  responses. They  then  dialed  in  a 
second  time  to  upload  the  responses. 

Within  18  months,  the  company  fleshed  out  the  remote-access  menu  with  Microsoft  Access,  Office 
and  homegrown  customer  sales/customer  service  using  Citrix  thin-client  software  and  servers.  Later 
the  company  added  terminal  emulation.The  load  quickly  got  up  to  the  neighborhood  of  650  to  700 
people  using  dial-up  remote  access,  as  marketing  staff,  engineers  and  others  also  found  the  broad¬ 
ened  application  access  useful,  he  says. 

“One  of  the  unanticipated  affects  was  all  of  a  sudden  these  guys  were  online  a  lot  of  minutes 
where  before  it  was  dial  and  dump.  When  you’re  doing  this  with  800-number  access, you’re  paying 
for  that  for  every  minute  that  these  guys  are  thinking,”  Brannon  says. 

By  2001,  the  monthly  bill  for  the  toll-free-number  access  had  grown  to  $60,000  per  month,  up 


The  Extended  Enterprise  Innovator 
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from  $30,000  initially,  Brannon  says.  Offering  customers  dial-up 
access  would  have  been  cost-prohibitive,  he  says.“We  realized 
that  as  we  scaled  it  up,  there  was  no  way  that  would  be  afford¬ 
able,”  he  says. 

The  next  step 

The  company  figured  that  a  remote-access  IPSec  VPN  would 
cut  out  the  toll-free  calling  fees  because  employees  could  gain 
access  via  the  Internet,  which  could  be  reached  via  a  flat-fee  ser¬ 
vice  plus  a  free  local  phone  call.  So  in  late  2001,  National 
Gypsum  installed  a  Cisco  3005  VPN  concentrator,  and  the  VPN 
reduced  the  monthly  connection  fees  from  $60,000  per  month 
to  $6,000  per  month. 

But  because  the  VPN  required  properly  configured  VPN  soft¬ 
ware  on  each  end-user  machine,  it  wasn’t  a  great  option  for 
extending  access  to  customers  and  carrier-logistics  partners  — 
the  shipping  companies  that  deliver  products  to  customers.“We 
couldn’t  really  go  to  our  carrier-logistics  partners  and  our  exter¬ 
nal  customers  and  say/You  guys  need  to  have  all  this  stuff  set  up 
on  your  machines  that  represents  our  software,’”  Brannon  says. 


BRIAN  GOMSAK 


twice  per  hour  for  each  load  in  transit,  Brannon  says. 

The  call  center  is  still  important,  but  the  Web  access 
has  expanded.  Via  the  customer  Web  pages,  customers 
can  request  notification  of  when  orders  have  shipped 
and  when  they  will  be  delivered.  These  notices  can  be 
pushed  to  e-mail  accounts  or  read  over  the  phone  via 
text-to-speech  software.  In  the  works  is  a  Web  service  that 
National  Gypsum  will  use  to  push  notifications  as  XML 
files,  says  Brannon,  who  notes  that  the  company  deliv¬ 
ered  nearly  1  million  “event  notifications”  —  meaning 
orders,  invoices  and  statements  —  in  2003. 

In  the  works 

In  addition  to  transitioning  nearly  all  remote  access  to 
SSL,  National  Gypsum  uses  another  feature  of  the  same 
equipment  to  support  Web  conferencing. The  company 
had  used  the  WebEx  Communications  conferencing  ser¬ 
vice  several  times  per  week  for  training  and  paid  up  to 
$200  per  meeting. “We’re  now  converting  everyone  over 
to  taking  advantage  of  this  SSL  VPN  box  that  has  the  abil¬ 
ity  to  do  that  essentially  for  free,”  he  says.  The  company 
still  has  to  coordinate  the  audio  portion  of  conferences, 
but  that  is  a  feature  of  its  Avaya  PBX. 

Also  on  the  agenda  is  presence  technology,  which 
National  Gypsum  hopes  to  use  for  connecting  customers 
to  the  correct  call  agents  when  they  can’t  get  what  they 
want  from  the  Web  pages,  Brannon  says.  He  wants  to  use 
Microsoft  Exchange,  Outlook  and  Share  Point  portal  soft¬ 
ware  features  to  build  pages  that  display  an  agent’s  avail¬ 
ability  when  a  customer  clicks  on  the  agent’s  name."!  want 
hooks  from  the  meeting  product  to  allow  us  to  connect  up 
and  share  screens  and  collaborate  in  real  time,  tying  in  to” 
instant  messaging,  Brannon  says. ‘  Id  like  that  extended  to 
customers  who  are  in  our  Web  site  and  customer  service 
people  who  are  on  our  network.” 

National  Gypsum’s  efforts  make  it  possible  for  extranet 
users  to  request  automatic  daily  updates  on  open  orders 
and  notification  of  individual  customer  sites  about  order 
arrivals.“We’ll  send  a  message  to  a  cell  phone  or  e-mail 
with  a  PDF,”  Brannon  says.“We’re  looking  at  [interactive 
voice  response] /speech  servers  where  you  could  say, ‘I 
want  you  to  call  me  at  a  particular  phone  number  and 
let  me  know  what’s  going  on.’” 

For  traveling  employees,  National  Gypsum  has  outfitted 
its  latest  issue  of  portable  PCs  with  wireless  LAN  cards 
for  hot-spot  connectivity. 

Whether  they  are  in  the  office  or  not,  National  Gyp¬ 
sum’s  VPN  offers  all  users  excellent  connectivity,  across 
the  board.  ■ 


So  while  providing  IPSec  VPN-based  access  to  employ¬ 
ees,  the  company  issued  external  users  Internet-based 
remote  access  using  software  from  Axent  Technologies 
(later  bought  by  Symantec). The  software,  which  could 
be  installed  on  most  types  of  machines,  served  as  a 
reverse  proxy  sitting  in  front  of  the  company’s  Web 
servers,  Brannon  says. This  prevented  those  servers  from 
being  exposed  to  the  Internet,  he  adds. 

In  all,  250  customers  eventually  used  the  system,  but 
the  licenses  for  the  software  proved  too  pricey  to  scale 
up  to  the  thousands  of  users  the  company  wanted  to 
serve,  Brannon  says. 

In  2002,  Brannon  turned  to  SSL  remote-access  gear 
from  VPN  specialist  Neoteris  (later  bought  by  NetScreen 
Technologies,  which  Juniper  acquired  early  this  year). 
This  breed  of  VPN  allows  secure  Internet  access  via  stan¬ 
dard  Web  browsers  with  no  other  client  software  re¬ 
quired.  From  the  licensing  perspective.it  sets  no  limit  on 
how  many  unique  users  can  access  the  gateway.  Instead, 
the  license  is  based  on  how  many  users  the  gateway  sup¬ 
ports  at  the  same  time.  SSL  VPN  made  perfect  sense  for 
National  Gypsum,  Brannon  says. 

Cementing  the  access  solution 

National  Gypsum  has  been  transitioning  the  250  Axent 
and  350  Cisco  VPN  users  to  SSL  for  two  years,  and 
expanding  the  total  number  of  authorized  users  to 
include  more  than  9,000  people.  These  are  the  employ¬ 


ees  of  companies  who  buy  National  Gypsum  products 
and  who  need  direct  access  to  the  company’s  extranet 
to  do  their  jobs,  Brannon  says.  The  gateway  checks  the 
remote  machines  for  anti-virus  software  and  policy  set¬ 
tings  under  Windows  XP  “Once  they  pass  that  test  and 
we  get  them  configured  and  checked  out,  then  we  con¬ 
nect  them  to  the  network,”  he  says. 

One  selling  point  of  the  SSL  VPN  gear,  now  called  the 
Juniper  NetScreen  5000,  was  that  with  vendor  cus¬ 
tomization,  the  gateway  can  tap  existing  SQL  databases 
of  user  profiles,  Brannon  says.  “It  doesn’t  require  us  to 
maintain  a  whole  bunch  of  security-profile  stuff  on  a 
separate  box  in  order  to  get  a  person  into  our  network. 
That  was  a  big  boon,”  he  says. 

Between  75  and  100  users  come  into  the  same  box 
concurrently.  Based  on  their  authentication  profiles,  they 
gain  access  to  data  pertaining  only  to  their  accounts  and 
their  roles.  Customer  authentication  profiles  don’t 
require  the  computers  to  submit  to  an  SSL  gateway  scan, 
as  is  the  case  when  company-issued  laptops  attempt 
access,  Brannon  says. 

Once  authenticated,  customers  connect  to  the  self-ser¬ 
vice  extranet  and  can  monitor  order  status,  find  the  loca¬ 
tion  of  loads  scheduled  for  delivery,  check  invoices  and 
billing  statements, and  get  summary  reports  of  their  busi¬ 
ness  history.  Today,  National  Gypsum  syncs  the  extranet 
every  few  milliseconds  with  new  transactions  and  cap¬ 
tures  GPS  order  locations  from  its  95  contract  carriers 
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You  can  make  your 
extended  enterprise 
constituents  take 
security  as  seriously 
as  you  do. 'Here’s  how. 


ACCESS  RESTRICTED 


•f  BY  SANDRA  6ITTLEN 

rganizations  planning  to  partner  with  Charleston  Southern  University  in  South  Carolina 
better  get  ready  for  a  rigorous  vetting  process.  CIO  Rusty  Bruns  is  a  stickler  when  it 
'  comes  to  security. 

His  biggest  fear  is  that  a  hacker  will  find  a  security  hole,  break  into  university  databases, 
and  steal  personal  and  financial  information  for  thousands  of  students  and  alumni.  “You 
have  to  make  a  conscious  best  effort  that  that's  not  going  to  happen,”  Bruns  says.  “1  have 
to  we've  done  .everything  we  can  based  on  the  school's  budget  and  the  technology 
that’s  out  there  to  protect  this  information." 

Bruns  comes  by  such  confidence  in  part  because  he  audits  the  CSU  network  every  12  to  18 
months  and  subjects  all  prospective  partners  to  a  thorough  third-party  audit.  (He  has  even 
budgeted  for  external  audits,  in  case  a  potential  partner  cannot  afford  one.)  Among  the  infor¬ 
mation  he  gathers  are  frequency  of  password  updates,  firewall-monitoring  procedures,  and 

A.Y  v  See  Security,  page  60 
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Part  ofNETGEAR's  standards-based  family 
of  ProSafe  products,  the  WG302  delivers 
the  interoperability,  investment  protection, 
and  scalability  that  wirelessly  connects  all 
business. . .  all  of  the  time. 
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NETGEAR®'s  ProSafe™  802.1 1  g  Wireless  Access  Point  WG302 
sets  the  new  standard  for  security  and  scalability 


NETGEAR's  ProSafe  802.1 1  g  Wireless  Access  Point  WG302  delivers  the  secure,  reliable,  high  performance  wireless  local 
area  networks  (WLANs)  today's  mobile  workforce  demands.  With  its  robust  security  measures,  simplified  management 
and  configuration,  extended  range,  integrated  IEEE  802.3af  Power  over  Ethernet  (PoE),  and  Wi-Fi  certification,  the 
WG302  brings  standards-based  enterprise-level  functionality  at  a  mid-market  price.  Fully  compatible  with  IEEE 
802.1 1  g  and  WPA  /  802.1 1  i  -  ready  functionality,  it  can  also  be  set  for  dynamic  1 08  Mbps  802.1 1  g.  And,  with  Propagate 
Networks'  AutoCell™  RF  management  technology,  the  WG302  offers  dynamic Tx  power  control  and  automatic  channel 
selection  to  automatically  tune  and  balance  signals  across  the  network,  thus  minimizing  channel  interference  and 
maximizing  performance.  An  optional  Enhanced  RF  Privacy  mode  offers  another  level  of  perimeter  security.  To  learn 
more  about  NETGEAR's  ProSafe  WG302  with  AutoCell  technology,  visit  www.netgear.com/go/euwg302 
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ENABLED 


AutoCell-enabled  WLAN  networks  deliver  maximum 
performance  up  to  four  times  greater  than  Wi-Fi 
networks  without  AutoCell,  according  to  performance 
tests  conducted  by  The  Tolly  Group®,  Inc.,  in  August  2004 


©2004  NETGEAR,  Inc.  NETGEAR  is  a  registered  trademark  and  "Everybody's  connecting."is  a  trademark 
of  NETGEAR,  Inc.  All  rights  reserved.  Other  brands  and  products  are  trademarks  of  their  respective 
holders.  Specifications  subject  to  change  without  notice. 
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Security 

continued  from  page  58 

found  vulnerabilities  or  access  holes. 

Once  he’s  satisfied  that  the  prospective 
partner  has  fixed  any  major  flaws 
uncovered  during  the  audit,  he  makes 
all  project  team  members  at  that  organi¬ 
zation  sign  a  security  policy  With  their 
signatures,  they  promise  to  take  a  variety 
of  security  precautions,  such  as  chang¬ 
ing  passwords  frequently  and  they  agree 
not  to  divulge  any  shared  information. 
Bruns  then  checks  the  partner’s  refer¬ 
ences,  asking  direct  questions  about 
how  the  organization  handles  security 

Even  when  Bruns  is  satisfied  that  a 
prospective  partner  can  be  trusted,  he 
only  extends  the  CSU  network  via  direct 
links, using  two  levels  of  application-spe¬ 
cific  passwords  and  encrypting  all  trans¬ 
missions.  He  could  not  achieve  high 
enough  levels  of  security  if  he  allowed 
Web  access,  Bruns  says. 

The  more  the  merrier 


Vinnie  Cottone,vice  president  of  infra¬ 
structure  services  at  financial  services 
firm  Eaton  Vance  in  Boston,  takes  a  dif¬ 
ferent  tack.  He  is  a  big  proponent  of  part¬ 
nering  and  doesn’t  want  to  limit  how 
many  companies  can  access  the  net¬ 
work.  To  that  end,  he’s  created  the  Busi¬ 
ness  Partner  Network. 

The  Business  Partner  Network  extends 
to  about  40  partners,  including  one  out¬ 
sourcer  that  operates  Eaton  Vance’s  call 
center  and  another  that  cares  for  the 
firm’s  client  data  records.  Also  linked  to 
the  Eaton  Vance  network  are  250  com¬ 
panies  that  supply  financial  data  feeds. 
Any  participating  company  must  sign  a 
security  policy,  Cottone  says. 

“Everybody  has  their  own  infrastruc¬ 
ture.  Since  we  can’t  mandate  how  it’s 
going  to  be  in  their  networks,  the  onus  is 
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ft  EVERYBODY  HAS  THEIR  OWN  INFRASTRUCTURE, 
SINCE  WE  CANT  MANDATE  HOW  ITS  GOING  TO  BE  IN 
THEIR  NETWORKS,  THE  ONUS  IS  ON  OUR  ENTER- 

—  VINNIE  COTTONE,  Eaton  Vance  PRISE,  NOT  OUR  PARTNERS 


on  our  enterprise,  not  our  partners. 
We’ve  got  to  figure  out  how  to  do  it,” 
Cottone  says,  especially  given  today’s 
proliferation  of  viruses  and  worms,  and 
the  increasingly  stringent  regulations. 

Firms  signing  up  to  be  part  of  the  Busi¬ 
ness  Partner  Network  can  choose  from  a 
menu  of  connection  options,  Cottone 
says.Tt’s  more  than  a  DMZ.  We  have  Web- 
based  applications, some  private  lines  — 
it  depends  on  the  application  we’re  try¬ 
ing  to  push  out,”  he  says.  In  the  financial 
services  world, “the  big  push  is  to  go  all 
Internet-based  and  get  away  from  the 
real  estate  of  private  links,”  he  says. 

Cottone  employs  an  intrusion-detec¬ 
tion  and  response  system,  and  if  he 
detects  a  problem  with  one  of  his  links, 
he  shuts  down  the  port  and  moves  the 
partner  to  a  quarantined  area  to  deter¬ 
mine  the  cause.Tt’s  important  to  remove 
them  from  the  production  area,” he  says. 

Like  Bruns,  Cottone  regularly  audits 
the  network. 

Frequent  audits  of  an  extended  enter¬ 
prise  should  be  a  given  but  they’re  often 
not,  says  Mark  Townsend,  technical  mar¬ 
keting  manager  at  Enterasys  Networks. 
“I’ve  seen  contracts  [our  clients  have] 
entered  into  where  there’s  no  testing  of 
the  link  at  all,”  he  says. 

Savvy  IT  executives  will  spot-check  to 
make  sure  the  partners  they’ve  drawn 
into  their  extended  enterprises  are  coop¬ 
erating  with  agreements, security  experts 
say  Another  smart  move  is  going  on-site 
at  least  once  per  year,  experts  agree. 

For  contracts  that  do  spell  out  auditing 


procedures,  the  language  on  how  to 
deal  with  security  problems  an  audit 
detects  must  be  clear,  Townsend  adds. 
“You  have  to  decide  what  level  of  inci¬ 
dent  would  cause  a  blocking  of  network 
access  [until  the  fix  is  made]  or  termi¬ 
nation  of  the  agreement,”  he  says. 

Before  engaging  the  extended  enter¬ 
prise,  IT  executives  should  be  well 
aware  of  architectural  detailsTYou  have 
to  describe  what  service  you’re  going  to 
provide,  what  infrastructure  is  going  to 
be  used  to  secure  that  service  and  what 
monitoring  will  be  in  place  to  check  on 
the  service,”  Townsend  says.  “Are  you 
going  to  use  proxy  servers?  Will  you 
open  up  Port  80  between  the  two  net¬ 
works?  What  access  to  what  application 
will  be  needed?  Who  will  be  able  to 
access  that  application?” 

Partners  must  embed  intelligence 
throughout  the  network  to  detect  possi¬ 
ble  attacks,  Townsend  says.  They  must 
employ  policy-based  protection  for  all 
devices  that  will  access  the  joint  net¬ 
work.  Installing  access  control  lists  and 
identity  management  tools  are  just  two 
options  for  stemming  unapproved  traffic. 

Get  chatty 

Partners  also  need  to  agree  on  types  of 
encryption,  anti-virus  program  for  gate¬ 
ways  and  desktops,  types  of  firewalls 
and  which  scanning  engine  to  use.  Even 
if  it  seems  counterculture,  security 
groups  have  to  open  up  and  talk. 

“Security  managers  have  a  certain 
level  of  paranoia,  and  that’s  not  a  bad 


thing.  However,  when  dealing  with  busi¬ 
ness  partners,  they  need  to  be  open  in 
discussing  some  of  their  security  issues,” 
says  Douglas  Potts,  security  system  engi¬ 
neer  with  CDW  a  computer  equipment 
retailer  in  Chicago.  “It’s  very  important 
that  before  the  relationship  is  formed, 
both  security  managers  need  to  speak 
and  collaborate.” 

This  might  create  tension,  Potts  admits. 
“One  company  might  be  calling  the 
shots  because  they’re  the  bigger  compa¬ 
ny  but  that  doesn’t  mean  that  the  smaller 
company  doesn’t  do  anything,”  he  says. 

Communication,  of  course,  is  critical 
when  alarms  happen. “There  should  be 
benchmarks  for  alarms  on  both  sides 
outlined  in  the  contract.  If  there’s  a  secu¬ 
rity  breach  on  one  side,  there  should  be 
open  and  free-flowing  communication. 
Everyone  should  be  alerted,”  he  says. 

Regulatory  and  compliance  restric¬ 
tions  make  this  even  more  critical,  Potts 
says.  If  you  fall  under  government  man¬ 
dates  such  as  Graham-Leach-Bliley, 
Health  Insurance  Portability  and  Ac¬ 
countability  Act  or  Sarbanes-Oxley  then 
you’re  legally  bound  to  make  sure  the 
data  you’re  sharing  is  protected  —  even 
if  it’s  off  your  network. 

“If  you’re  dealing  with  a  business  part¬ 
ner  who  has  not  had  experience  with 
the  new  legislation, you  must  educate  it,” 
he  says.  “If  you  join  together,  it’s  your 
responsibility  to  live  up  to  the  standards.” 

Gittlen  is  a  freelance  writer.  She  can  be 
reached  at  sgittlen@charter.net. 
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To  secure  the  extended  enterprise,  partners  must  collaborate 
Too  on  security  procedures.  Douglas  Potts,  a  security  expert  at 
computer  retailer  CDW,  calls  out  these  must-consider  points. 

L  ..  YOy  '  A  :  ••• 

-■.  A ;;  ;  CONTACTS  ^  Each  company  should  decide  who  on  their  teams  will  have  access  to 
pY'  OY '  the  -shared  network.  The  manner  and  frequency  of  communication  among  the 
TO  \0;  points  of  contact  also  should  be  specified.  Will  the  contacts  meet  —  weekly,  month- 

Y;;Otp-Yy:  ayt-Y  y  '  •  .  . 

wmm  groups  usually  have  a  predetermined  set  of  rules  for  network  access 
^A/Yand: acceptable  Use.  The  two  teams  should  reach  common  ground  on  these 
^vOyYtrigSias.'they relate  to  the  extended  enterprise. 

g—  Partners. must  decide  on  the  degree  of  security  they  are  going  to 
4|h^fement  and  put  that  in  writing.  What  level  of  encryption  will  be  used?  Also, 
.needs  to. take  an  inventory  of  security  tools,  then  the  teams  should 
ibk, for  compatibility  between  their,  tools. 

Partners  must  assign  members  of  each  team  to  install  and  test  the  secu- 


rity  equipment  on  both  sides  of  the  network. 
Each  partner  should  regularly  report  on 
the  vulnerability  status  of  those  links. 


IMINitKE  —  Team  members  must 
be  aware  of  security  threats  and 
update  the  network  accordingly  with 
patch  management  or  other  tools. 
Establish  a  review  procedure  to  make 
sure  that  the  threats  on  both  sides  are 
being  managed. 


StUUKI  I Y  bntfllintS  —  When  a  security 
breach  is  identified,  both  teams  should  be 
alerted.  Partners  should  have  a  list  of  proce¬ 
dures  to  follow  that  includes  a  contact  list  and 
immediate  action  steps. 


tXII  o  I HAI  tliY  —  The  dissolution  of  a  partnership 
should  mean  the  termination  of  the  network  link. 

Rules  and  processes  must  be  put  in  place  that  dic¬ 
tate  how  to  break  down  the  relationship,  including  password  changes,  port 
closings  and  the  blocking  of  IP  addresses.  Both  parties  should  be  aware  of 
these  procedures. 
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lient/server  is  dead.  Long  live  Web  services  —  or  so  many  in  the  software  industry  would  have  users 
believe.  Now  that  Web-based  front  ends  are  uniformly  included  with  enterprise  applications  (and 
Web  services  promise  even  more  functionality  on  all  sorts  of  roving  devices),  old-fashioned  termi¬ 
nal  services  applications  such  as  Citrix  seem  doomed. 

Yet  the  Web  has  not  spelled  the  demise  of  Citrix-like  services.  The  truth  is,  analysts  and  users  say 
Web  apps  —  despite  their  thin-client,  platform  independence  —  often  still  have  a  pretty  major 
downside:  poor  performance  for  remote  users. 

“Basically  if  your  application  is  working  fine  today  and  all  you  want  to  do  is  provide  remote  access 
to  it,  then  youd  be  insane  not  to  use  a  terminal  server-based  technology  like  Citrix,”  says  Brian 
Madden,  an  independent  industry  consultant. 

Citrix  and  other  terminal  services  are  easy  to  use  and  deploy  especially  for  legacy  applications  that 
aren’t  Web-enabled.  Providing  the  remote  access  doesn’t  require  reworking  the  application  or  using 
a  particular  device  by  end  users. 

“With  Citrix,  you  can  be  up  and  running  in  literally  less  than  24  hours,  fully  deployed. You  simply 
can’t  beat  that,” says  Mike  Hughes, IS  manager  at  Campbell  Group, a  Portland, Ore., timber  investment 
and  management  firm. 

Campbell  Group  struggled  to  provide  remote  access  to  an  internal  Microsoft  Access-based 


Even  as  Web  services  grow,  they’ll  never  completely 
choke  out  terminal-based  remote  access. 


accounting  program  until  it  hit  on  Citrix,  Hughes  says. “We  tried 
it,  and  boom,  it  worked.  When  we  saw  how  easy  Citrix  was,  it 
became  the  way  we  provide  remote  access  for  everything.  It’s 
easy  to  manage  and  quick  to  deploy’ 

Hughes  and  one  other  IT  staffer  manage  application  access  for 
about  200  PCs  and  servers  and  150  employees  at  eight  offices  in 
four  states.“The  simpler  we  can  keep  it,  the  better  it  is.  We’re  sav¬ 
ing  so  much  on  manpower  by  not  having  to  constantly  touch 
those  remote  machines,”  Hughes  says. 

The  choice  is  not  so  clear-cut  if  your  applications  already  are 
Web-enabled. 

“If  the  Web  front  end  is  already  built-in,  and  it  isn’t  costing  you 
anything,  then  you’d  be  nuts  not  to  use  the  browser^’  says  Jason 
Brougham,  enterprise  network  manager  at  American  Medical 
Response,  an  ambulance  services  firm  in  Greenwood  Village, 
Colo.“Citrix  servers  aren’t  free,  and  . . .  with  Citrix,  you  pay  for  an 
additional  client  license  on  top  of  your  Windows  license  for  a 
Windows-based  app.That  can  add  up.” 

Still,  moving  to  a  Web-enabled  version  of  an  application  could 
cost  more  than  Citrix,  says  Brougham,  offering  as  an  example  an 
ERP  application  upgrade  for  Web  access  alone.  “You  have  to 
weigh  the  benefits  of  that  half-million-dollar  investment  in  the 
new  version, and  the  downtime  and  resources  to  do  the  upgrade, 
especially  if  you  don’t  need  the  other  new  features.  Plus, you  have 
to  look  at  the  training  costs.  Going  from  a  client/server-based  app 
to  a  Web  app  is  never  the  same,”  he  says. 

Madden  uses  e-mail  as  an  example.  “Would  you  rather  use 
Hotmail  or  Microsoft  Outlook?  Outlook  is  much  better  and  easi¬ 
er  to  use.  For  every  single  screen,  you  don’t  have  to  click  ‘Next’ 
and  wait  for  it  to  send  your  request  to  the  server  and  wait  for  it  to 
send  it  back.That’s  a  real  value,”  he  says. 

Citrix  delivers  an  experience  similar  to  traditional  Outlook. 
“Citrix  gives  you  the  same  level  of  access  as  a  Web  app,  but  it  also 
delivers  this  rich  Windows  32-bit  GUI,”  he  says. 

See  Citrix,  page  64 


A  wireless  network  as  easy  to  use,  secure  and  manageable 
as  your  wired  network. 


The  new,  scalable  3Com®  Wireless  Mobility  System  lets  you  integrate 
our  wireless  switch  solution  into  your  existing  wired  network  easily 
and  securely. 


►  Learn  more  about  the  3Com 
Wireless  Switch  in  a  brief, 
informative  Webinar. 


It's  everything  you  want  from  your  wireless  networking  in  a  single 
solution.  From  automated,  customized  site  planning  tools  to  voice-ready 
CoS  and  QoS  support,  this  scalable  switching  solution  is  engineered  to 
meet  current  and  future  needs  for  investment  protection. 

Make  the  right  choice  in  wireless.  Register  for  a  free  Webinar  to  learn  more. 

Go  to  www.3com.com/wireless. 


Attend  a  free  Webinar 

to  learn  more  about  wireless  switching. 


•  Customized  site  planning 

•  Simple  set-up 

•  Centralized  management 

•  Automated  AP  management 

•  Rogue  detection 

•  User  and  group  security  profiles 

•  Mobility  and  fast  roaming 

•  Monitoring  and  alerting 

•  Voice-ready  CoS  and  QoS 

•  Reduced  installation 
and  administrative  costs 


3Com 
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Exercise  Choice"' 


Citrix  vs.  Web  access:  Points  ot  differentiation 


■  The  femoi^^pplication  ac'cess  decision  usually  is  between  traditional 
1brrt!inaf' sen/ices  or' new  Web-enabled  applications.  Consider  these  issues. 

Wet"  applications  are  bursty,  while  Citrix  OFFLINE.  Neither  Citrix  nor  a  Web-enabled 
L  ohs ,  air©.  'StreanVing You.  ai ways  know  how  provides  much  of  an  offline  experience  b 
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use.  while  Web  stuff 

;-lfentdS  :b' spike,  imakincj' traffic  ioad’s  harder  to  get  a 

'  ■  ' 

"knitnliflimr  Tvi'/  •  v-  ■  . 


.  fttbFuwSE/WeO  apps  tend  to  have  slower  response 
J|A|^"p^y6.ry  time  youf'oli^k  pp  "Next,"  you\re  got 
to  uplpad'or  download.  Depending 


%;^tyw^||3^K:atiorl,.perfbrrnance  could  suffer  vs. 

£^|pifV'  'A'eb  apDs  irtight  hold;data  in  the  browser’s 
.ythichc'an  Be 'a  security  .risk.  Citrix  uses  SSL 
^s^drity  and  ©nly  keystrokes  traverse  the  link,  mak- 

k  :  ... 


OFFLINE  .  Neither  Citrix  nor  a  Web-enabled  application 
provides  much  of  an  offline  experience  because  they 
both  require  access  to  a  central  sewer. 

EXPENSE.  Citrix  requires  licensing  costs  for  the  server 
and  tne  clients,  whereas  a  Web  client  is  free.  Web- 
enabled  apps  might  require  costly  upgrades. 

PRODUCTIVITY.  Citrix  gives  you  the  illusion  of  using  that 
fat  32-bit  client,  while  Web  apps  are  more  stripped 
down.  Web  apps,  then,  might  require  additional 
training  time  and  dollars. 

PLATFORM  CHOICE.  Both  Citrix  and  Web  apps  can  pretty 
much  run  on  anything.  Still,  some  Web  apps  are  too 
RAM-intensive  to  run  on  a  dumb  terminal,  whereas 
Citrix  can  always  run  on  one. 


Citrix 

continued  from  page  62 

Bandwidth  and  security 

Choosing  between  Citrix  or  a  Web  app  also 
depends  on  the  bandwidth  requirements  of  the 
particular  application.  “If  the  database  is  sitting  in 
Denver,  and  the  user  is  sitting  in  Florida,  and  the 
application  needs  to  return  hundreds  of  records,  a 
Web  app  is  going  to  be  sloW’ Brougham  says.’At  that 
point, you  can  either  pay  to  increase  the  bandwidth 
on  your  WAN  or  you  can  use  Citrix  and  put  the 
client  piece  on  a  server  next  to  the  application  so  it 
runs  at  Mach  2. The  performance  is  incredible,  and 
in  that  case,  the  bandwidth  with  Citrix  is  a  lot  less 
than  a  Web-based  app.” 

This  is  because  Citrix  is  more  of  a  screen-scraping 
technology,  delivering  keystrokes  and  screen 
changes  over  the  wire.  Web  apps,  on  the  other 
hand,  need  to  deliver  every  JPEG  image,  document 
and  so  on  .This  makes  Citrix  more  of  a  known  quan¬ 
tity  when  it  comes  to  bandwidth,  whereas  Web 
apps  are  more  spiky  and  less  predictable. 

“Citrix  is  like  a  constant  stream  of  10K  bit/sec 
usage  rate  on  your  WAN,  whereas  with  the  Web,  if 
you’re  using  a  bunch  of  JPEGs  and  Word  docu¬ 
ments,  you  could  be  pulling  down  a  page  of  400K,” 
Brougham  says.'All  that  takes  time  and  bandwidth  to 
move  back  and  forth  between  a  remote  location 
and  the  centralized  database  or  Web  server’ 

Citrix  also  can  be  more  secure  to  use  than  Web- 
based  apps,  which  can  be  a  real  boon  in  the  face 
of  federal  requirements  such  as  the  Health 
Insurance  Portability  and  Accountability  Act. 

“If  you’re  typing  private  health  information  into  a 
Citrix-based  app,  you’re  typing  it  onto  a  server  in  a 
hardened  data  center  and  just  the  keystrokes  go 
across  the  wire,  not  the  record,”  Brougham  says. 
“With  a  Web-based  app,  the  data  all  gets  pulled 
down  and  could  be  cached  in  the  browser!’ 

Plus,  Citrix  doesn’t  require  that  remote  users 
access  applications  via  a  VPN,  which  can  be  tough 
to  deploy  and  manage. 

“Citrix  is  much  more  secure  than  a  VPN,” 
Campbell  Group’s  Hughes  says.“When  I  allow  a  user 
with  a  home  computer  to  VPN  into  my  office,  I  end 
up  opening  a  nice  big  hole  to  an  unsecured  com¬ 
puter  over  which  I  have  very  limited  control.”  If  the 
home  user’s  computer  has  been  compromised,  the 
VPN  would  provide  a  tunnel  for  an  attack  straight 


into  the  corporate  network. 

“With  Citrix,  I  can  have  a  nice 
tight  perimeter  and  don’t  have  to 
let  people  punch  holes  through 
with  unsecured  machines.  In¬ 
stead,  they  visit  our  Web  site,  log 
on  and  they’re  good  to  go,”  he  says. 

Citrix  and  Web  service 

Web  access  advocates  will  argue 
that  the  browser  is  the  best  way  to 
go  if  you  plan  to  use  Web  services- 
based  applications,  such  as  those 
that  use  Microsoft’s  .Net  platform 
or  Sun’s  Java  and  Java  2  Platform 
Enterprise  Edition.  But  that’s  really 
an  apples-to-oranges  comparison  because  Web  ser- 
vices-based  applications  rely  on  “rich”  or  “smart” 
clients,  and  are  not  thin-client-based,  analysts  and 
users  say  Thin  clients  such  as  Citrix  actually  play 
nicely  in  a  .Net  environment. 

“You  might  develop  a  .Net  application  that  is 
very  smart  and  can  use  all  these  back-end  Web  ser¬ 
vices  to  pull  data  from  a  million  different  systems,” 
Madden,  the  consultant,  says. “But  the  client  piece 
has  high  requirements.  It  needs  a  certain  amount 
of  RAM  and,  in  the  case  of  .Net.it  requires  that  .Net 
Framework  be  running  on  the  client,  which  means 
it  has  to  be  some  kind  of  Windows  PC.” 

As  such,  terminal  services  will  be  around  for  a 
long  time,  he  says. “In  five  or  10  years,  let’s  say,  all 
applications  are  .Net-like  Web  services-based 
applications.  We’ll  [still]  have  a  need  to  deploy 
these  applications  to  Java  PCs,  Linux  machines, 
Macs,  PCs, smart  phones  and  so  on,”  he  says.“And 
terminal  services  will  provide  that  access  and  a 
rich  interface,  plus  the  manageability  of  a  thin 
client.” 

Some  users,  including  Campbell  Group,  use  a 
combination  of  Web  services  and  Citrix  today 
“You  really  can’t  publish  a  .Net  application  in  a 
browser  interface  and  retain  a  lot  ot  functionality” 
Hughes  says.  “It  makes  more  sense  to  deploy  it 
through  Citrix  because  then  you  can  centralize  it 
and  make  it  easier  to  maintain,  while  retaining  the 
rich  GUI. They  work  together  fine." 

Cummings  is  a  freelance  writer  in  North  Andover, 
Mass.  She  can  be  reached  at  jocummings@ 
comcast.net. 


THIN  CLIENTS  LIKE  browser  and  Citrix-like  terminal  ser¬ 
vices,  are  not  the  only  way  to  provide  remote  access  to  appli¬ 
cations,  especially  in  the  emerging  world  of  Web  services. 
Distributed  32-bit  rich  clients  sometimes  make  more  sense 
than  either  of  those  options. 

Such  is  the  case  at  FedEx  Kinko’s,  which  delivers  a  robust 
.Net-based  Web  services  application  to  remote  users  via  a 
"rich"  or  "smart"  client.  Taking  a  customer-centric  approach 
on  development  led  the  company  to  that  choice,  says 
Anthony  Norris,  director  of  commercial  and  e-commerce 
technology  at  FedEx  Kinko's  in  Dallas. 

FedEx  Kinko's  developed  a  new  application,  called  File,  Print 
FedEx  Kinko's,  that  lets  users  with  an  Internet  connection 
print  to  any  FedEx  Kinko’s  location  directly  from  their  own 
Windows-based  PCs. The  application,  based  on  Microsoft’s 
.Net  platform,  functions  as  a  printer  driver  for  Windows.  It 
lets  customers  generate  a  print-ready  file  that  eliminates 
many  of  the  quality  issues  —  such  as  font  conflicts  —  that 
can  crop  up  when  a  document  is  created  on  one  computer 
and  printed  on  another. 

Even  though  the  application  is  intended  to  provide  the  gen¬ 
eral  public  with  access  to  its  print  shops,  FedEx  Kinko's  didn’t 
go  the  browser  route.  “With  Web-based  applications,  a  lot  of 
times  you  can’t  quite  get  the  usability  that  gives  that  great 
customer  experience  that  you  need,"  Norris  says.  “With  the 
rich  client,  we  were  able  to  take  advantage  of  all  of  our 
usability  research  to  direct  and  dictate  the  design  of  the 
application  and  deliver  it  directly  to  the  user.  I  don't  think  the 
browser  could  provide  that  level  of  functionality.” 

However,  the  client  requirements  for  the  application  are 
substantial.  Users  need  Pentium  Ill-compatible  Windows  XP 
or  2000  computers  with  a  500-MHz  processor  and  30M  bytes 
of  free  disk  space,  plus  they  must  be  running  the  .Net 
Framework  client  software.  These  stiff  requirements  have  not 
stopped  users,  Norris  says.  "People  use  it  and  they  like  it.  I 
don’t  think  we're  ahead  of  the  curve  in  terms  of  the  hardware 
required  here,"  he  says. 

Because  the  application  uses  a  rich  client,  it  works  online 
and  offline  —  something  that  server-reliant  technologies  such 
as  Citrix  or  a  browser  cannot  handle. 

“That's  a  huge  advantage,"  Norris  says.  “So  in  the  case  of 
File,  Print  FedEx  Kinko’s,  you  don't  actually  have  to  be  con¬ 
nected  to  the  Internet  to  use  the  software.  You  can  start  your 
print  order,  specify  how  you  want  it  printed  and  then  queue  it 
up  for  submission  later  when  you’re  connected  to  the 
Internet.  Business  users  traveling  on  an  airplane  won’t  have 
any  trouble  using  our  software,  whereas  with  Citrix  or  a  Web 
application,  they  can't  do  that.  That's  tremendously  powerful 
—  a  huge  value." 

-  JOANNE  CUMMINGS 


The  richer,  the  better 

FedEx  Kinko's  favors  rich 
over  thin  when  it  comes  to 
client  access  to  a  new  app. 


EMC2 

where  information  lives 


Fr:  a  wide  range  of  information  management  challenges 


To:  a  wide  range  of  software  to  overcome  them 


EMC  SOFTWARE  GIVES  YOU  MORE  OPTIONS,  MORE  CHOICES.  You  have  all  kinds  of  information 


management  challenges.  EMC  has  the  software  to  help  you  overcome  them.  Whether  you’re  dealing  with  storage 
management  or  content  management.  So  you  can  manage  growth,  protect  and  recover  information,  achieve  •  'J 
compliance  and  business  continuity,  and  keep  everything  running  smoothly.  And  EMC  software  works  with  your  / 


■■a 


systems  and  software.  Now,  and  in  the  future.  To  learn  more,  visit  www.EMC.com/software. 
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_ ADVERTISEMENT _ 

Your  ft] e west  Enemy:  Unprotected  Endpoints 

iPass  CTO  Roy  Albert  talks  about  achieving  gap-free  protection 
for  your  enterprise  network. 


A  dramatic  shift  is 
on  the  way  for 
IT  organizations, 
according  to  Roy 
Albert,  chief  tech¬ 
nology  officer  at 
iPass.  While  much 
has  been  made  of 
the  need  to  pro¬ 
tect  the  edge  of 
the  network,  Albert 
believes  IT  organ¬ 
izations  should  place  more  focus  on  the  rapid 
proliferation  of  unprotected  devices  hooking 
onto  the  network  and  the  inherent  security 
risks  of  having  mission-critical  data  on  those 
devices.  Albert  says  IT  managers  should 
immediately  address  this  issue — what  he 
sees  as  an  unacceptable  gap  in  enterprise 
security — before  corporations  possibly  suffer 
the  competitive,  financial,  and  legal  conse¬ 
quences  of  having  that  data  stolen.  Here  he 
outlines  the  threat  and  how  IT  managers  can 
protect  themselves. 

Why  do  you  see  remote  and  mobile  devices 
as  a  severe  network  threat? 

There  was  a  point  last  year  when  security 
cropped  up  in  all  our  customer  conversations. 
IT  managers  were  asking:  How  do  I  stop 
viruses  from  coming  in  and  affecting  my  entire 
network?  We  discovered  that  while  most  ven¬ 
dors  have  made  a  big  deal  about  protecting 
the  edge  of  the  enterprise  network,  there’s 
another  strategic  inflection  point  that  is  com¬ 
ing — the  devices  themselves.  IT  managers 
don’t  yet  pursue  the  security  of  those  devices 
as  if  their  jobs  depended  on  it.  Yet  those 
devices  [especially  those  carried  by  senior 
executives]  have  mission-critical  data  on  them 
which  needs  to  be  protected. 

In  terms  of  sensitive  documents  and  financials? 

People  have  e-mails  and  financial  documents 
and  confidential  customer  information  that 
lives  on  laptops  and  handhelds — and  many  of 
these  people  travel  extensively.  If  those 
devices  are  compromised  and  critical  informa¬ 
tion  is  stolen,  the  company  may  have  just 
allowed  information  to  leak  to  a  competitor,  or 
may  have  violated  customer  data  privacy. 
Mobile  devices  are  becoming  easier  to  lose  as 
they  become  smaller  and  more  portable.  IT 
groups  have  to  take  responsible  precautions 
to  protect  those  mobile  devices. 

Enterprises  as  a  whole  are  becoming  mobi¬ 
lized— resources  that  used  to  be  centralized 
are  moving  out  to  mobile  devices;  so  you  have 
to  think  about  your  security  in  terms  of  the 
extended  enterprise.  Devices  need  to  be  pro¬ 
tected  in  their  own  right.  Additionally,  users 
don’t  always  connect  to  the  enterprise  every 


time  they  log  on  to  the  Internet.  Therefore,  in 
order  to  achieve  gap-free  protection,  IT  man¬ 
agers  need  to  focus  on  the  defense  of  mobile 
and  remote  devices  anytime  they  are  connect¬ 
ed  to  the  Internet. 

What  are  the  biggest  concerns  in  supporting 
and  protecting  remote  and  mobile  devices? 

The  first  is  protecting  the  information  on  users’ 
machines,  because  that  is  part  of  the  intellec¬ 
tual  property  of  the  corporation.  The  second 
big  concern  is  ease  of  use.  IT  departments  are 
besieged  by  trouble  calls  when  the  users  are 
blocked  [from  the  network].  We  have  seen 
recent  instances  where  IT  managers  have  sac¬ 
rificed  security  for  ease  of  use  and  have  gotten 
into  trouble  later.  So  the  real  challenge  is  to 
implement  security  so  that  it  doesn’t  interfere 
with  the  end-user  experience. 


ARE  YOUR  IT  ASSETS  SECURE? 

Follow  these  steps  for  gap-free  protection. 

User  Identity — Make  sure  user  credentials  for 
Internet  and  VPN  access  are  protected  as  they 
transit  local  access  providers  and  the  Internet. 

Endpoint  Integrity — Perform  assessment  and 
remediation  on  all  mobile  and  handheld  devices 
connecting  to  the  Internet  from  outside  the  firewall. 

Enterprise  Network — Put  in  place  a  mechanism 
that  lets  you  deny  untrusted  users  and  endpoints 
access  to  network  assets. 

Device  Identity — Only  let  trusted  devices  have  full 
access  to  your  enterprise. 

Session  Data — Limit  the  ability  of  users  to  commu¬ 
nicate  from  insecure  sites  without  a  VPN  in  place 
to  avoid  data  or  identity  theft. 


What  about  regulatory  issues?  What  role  do 
they  play  in  securing  the  devices  in  the  extend¬ 
ed  enterprise? 

I  think  we’re  going  to  see  more  legislation — 
already  there’s  HIPAA  in  the  U.S.,  among  oth¬ 
ers — and  we’re  going  to  see  more  inadvertent 
disclosures.  Perfect  security  is  cost-prohibitive, 
but  the  IT  department  is  obligated  to  do  a  rea¬ 
sonable  job  of  protecting  devices.  The  unfortu¬ 
nate  truth  is  that  many  IT  departments  don’t 
have  a  clear  idea  of  what  their  risk  exposure  is 
from  remote  and  mobile  devices. 

What  are  some  of  the  ways  IT  managers  can 
address  device  security? 

Deployment  of  personal  firewalls,  anti-virus 
software  and  VPNs  in  a  thoughtful  way  is  key. 
Deployment  of  assessment  and  remediation 
and  patch  management  to  ensure  these  securi¬ 


ty  products  are  kept  up  to  date  is  also  very 
important.  The  IT  manager  needs  to  understand 
what  he  has  to  do  to  protect  his  devices  and 
needs  to  understand  the  behavior  of  his  users. 
He  needs  to  understand  how  often  his  users 
are  accessing  the  Internet  in  the  absence  of  a 
VPN  and  what  kinds  of  networks  they’re  con¬ 
necting  to — such  as  wireless  or  shared  broad¬ 
band.  And  he  needs  to  know  what  kinds  of 
attacks  are  happening  and  how  to  protect 
against  those. 

It’s  important  to  note:  VPNs  protect  the  data 
moving  between  the  laptop  and  the  enter¬ 
prise — they  don’t  protect  the  laptop  itself  from 
being  compromised.  They  don’t  address  whether 
the  user  credentials  used  to  get  on  to  the  device 
were  administered  properly  and  they  also  don’t 
protect  the  enterprise  network,  which  can  be 
infected  by  viruses  transmitted  by  mobile 
devices  connecting  through  a  VPN  tunnel. 

How  can  IT  managers  install  and  maintain 
security  procedures  on  devices? 

Put  in  an  automated  patch  management  sys¬ 
tem  that  addresses  the  specific  challenges  of 
a  mobile  environment:  whether,  for  example, 
the  client  polls  for  updates  or  a  server  pushes 
them  to  users  who  are  only  occasionally 
online;  whether  the  system  has  the  ability  to 
trickle  updates  over  a  low-bandwidth  connec¬ 
tions;  or  whether  you  provide  the  ability  to 
resume  updates  after  a  connection  has  been 
lost.  A  patch  management  system  will  auto¬ 
matically  determine  what  patches  are  available, 
assess  the  devices  and  report  back  to  the  IT 
manager.  The  process  needs  to  be  automated 
because  IT  departments  can’t  spend  their  lives 
looking  for  patches  and  getting  them  to  the 
machine  on  a  timely  basis. 

Also,  to  protect  against  untrusted  devices, 
consider  some  of  the  emerging  device  authen¬ 
tication  approaches,  such  as  iPass’  DevicelD 
service.  It  lets  you  reliably  identify  the  device 
as  a  trusted  corporate  asset  and  assign  rights, 
or  block  access,  accordingly. 

GET  TRUE  GAP-FREE  PROTECTION 
BY  SECURING  YOUR  ENDPOINTS 

Download  the  iPass  Policy  Orchestration 
White  Paper  to  Learn  How 
to  Shore  Up  Your  Network. 
www.ipass.com/policyorchestration 


Trusted  connections. 
No  compromises. 
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FOR  SECURITY  REASONS, 
WE’RE  RESTRICTING 
THE  MOVEMENTS  OF 
YOUR  MOBILE  USERS. 


Policy-managed  connectivity 
that  doesn’t  limit  how 
or  where  they  work. 

Now,  everywhere  is  There. 


Can  you  guard  your  corporate  network 
without  grounding  your  mobile  workforce? 
With  iPass,  they’re  good  to  go.  The  iPass" 
Endpoint  Policy  Management  service  makes 
sure  users  are  updated  with  the  right  security 
measures  before  they  log  on,  automatically 
finding  and  fixing  problems  on  the  fly.  So 
you  can  stop  worrying,  and  your  workers  can 
keep  working — everyThere  they  go. 
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Despite  years  of  promises, 
enterprise  application!  vendors 
have  yet  to  fully  embrace  mobility. 
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m  BY  STEVE  ULFELDER 

hen  it  comes  to  mobility  the  major  enterprise  application  vendors  are  going 
4 (if)'-:)'  nowhere.  At  least  that’s  what  one  $50  billion  consumer  goods  manufacturer  found 
x  ‘  when  it  tried  extending  Siebel  Systems’  applications  to  field  workers.The  attempt  went 
x  so  poorly  for  this  Fortune  500  manufacturer  that,  despite  a  major  investment  in  and 
4  devotion  to  Siebel  enterprise  software,  it  turned  instead  to  a  vendor  that  specializes  in 
mobile  tools. “When  it  comes  to  mobile  applications,  Siebel  certainly  hasn’t  kept  up,” 
r  says  a  senior  IT  manager  at  the  company  who  requested  anonymity 

Porting  Siebel’s  rich  applications  to  the  tiny  form  factors  of  handheld  devices  is“chal- 
[  ' lenging,”  concedes  Jeff  Summers,  vice  president  of  marketing  at  the  vendor.  But,  he 

counters, several  upgrades  in  the  latest  release,  Siebel  7.7,  are  aimed  at  mobile  users. 

A  feature  called  TrickleSync  automatically  synchronizes  mobile  clients  whenever  the 
software  detects  a  network  connection.  IT  can  enable  TrickleSync  centrally  cutting  users 
out  of  the  loop.  Another  change  reduces  the  number  of  transactions  replicated  to  mobile 
clients, shortening  sync  time  and  trimming  the  mobile  database  size,  Summers  says. 

Increasingly  what  today’s  corporations  want  is  the  ability  to  make  up-to-date  business  data  avail¬ 
able  to  employees, customers, suppliers  and  business  partners  when  and  where  they  need  it. Ideally 
that  means  the  number-cruncher  working  at  her  desktop  computer  at  headquarters,  the  PDA-toting 
service  technician  out  in  the  hinterlands  and  the  sales  representative  polishing  up  some 
PowerPoints  while  connected  via  laptop  from  a  hotel  room  each  would  pull  information  directly 
from  the  same  CRM  database  while  working  in  user  interfaces  suitable  to  their  computing  devices. 
And  in  this  world,  any  changes  these  users  make  would  kick  back  instantly  to  that  central  source 
so  the  data  stays  real-time. 


But  reality  bears  little  resemblance  to  this  ideal,  despite  the 
obvious  importance  of  mobility  and  the  effusive  lip  service 
enterprise  application  vendors  pay  it. 

Many  critics  (analysts,  specialty  vendors  and  users  alike)  say 
the  major  vendors’  concentration  on  the  desktop  makes  it  diffi¬ 
cult  for  them  to  tweak  their  offerings  to  suit  field  workers’  needs. 
“A  task  performed  by  a  guy  out  in  the  field  doesn’t  necessarily 
match  an  application  designed  for  tasks  performed  by  informa¬ 
tion  workers  in  the  office, ’’says  Prakash  Iyer,  CTO  and  senior  vice 
president  of  products  and  services  at  Everypath,  which  makes 
software  for  mobile  workers.  Specialty  mobile  vendors  such  as 
Everypath,  Eleven  Technology  and  Dexterra  say  their  advantage 
over  the  Oracles  and  PeopleSofts  is  that  they  begin  with  the  field 
worker  and  work  backward. 

Everypath  built  its  application  for  pharmaceutical  sales  reps 
taking  into  account  the  astonishingly  short  sales  cycles  that  pre¬ 
vail  in  that  industry  —  30  seconds  to  4  minutes,  as  reps  franti¬ 
cally  pitch  busy  doctors  during  elevator  rides  or  in  lobbies,  Iyer 
says.The  Everypath  application  includes  only  a  limited  subset  of 
data,  but  that  data  can  come  from  the  seller’s  ERP  and  CRM 
databases  —  it’s  the  information  the  sales  reps  themselves  say 
they  need.  Conversely  an  equivalent  tool  from  a  large  vendor 
could  force  users  to  choose  from  their  ERP  CRM  or  salesforce 
automation  applications,  and  might  make  quick  sales  calls  dif¬ 
ficult  by  presenting  extraneous  information,  Iyer  says. 

Of  course,  major  application  vendors  are  quick  to  point  out 
their  own  advantages,  such  as  the  manageability  gained  by 
sticking  with  a  single  supplier.  “We  offer  the  ability  to  centrally 
manage  all  the  devices,  directly  from  the  same  SAP  manage¬ 
ment  console  already  in  use,”  says  Howard  Beader,  director  of 
SAP  solutions  for  mobile  business.  Moreover,  IT  can  centrally 
manage  which  users  receive  which  applications,  based  on  user 
roles,  geographic  location  and  other  factors. 

To  be  sure,  some  of  the  limiting  factors  are  beyond  vendor 
control.  Updating  the  database  in  real  time  can  be  an  expensive 
proposition  and  a  foolish  goal  if  wireless  transmissions  are  a  fac¬ 
tor  because  connectivity  can  be  spotty 

Many  consultants  and  system  integrators  recommend  that 
companies  rely  largely  on  cradle  synchronization  at  first,  with 
an  eventual  goal  of  moving  to  real-time  communication. 

A  hybrid  approach  works  well  for  Pepsi,  says  Tim  Curran,  CEO 
at  Eleven,  which  provides  the  company  with  a  wireless  retail 
application.At  Pepsi, field  reps  who  stock  store  shelves  “do  a  cra¬ 
dle-attached-mode  sync  that  maybe  takes  10  minutes”  during 
the  morning.  But  they  transmit  orders  back  to  distributorships  in 
real  time  (or  as  soon  as  they  can  get  a  network  connection  from 
their  remote  devices), he  says.“To  get  those  supply-chain  advan¬ 
tages  they  want  to  get  that  inventory  data  to  the  factory  ASAP,” 
Curran  says.  Pepsi  declined  an  interview. 

While  corporate  users  figure  out  the  best  ways  to  synchronize 
their  data,  enterprise  vendors  are  working  to  improve  their  sync 
offerings.  Siebel  has  TrickleSync,  while  PeopleSoft  teamed  re¬ 
cently  with  Intellisync  to  address  a  problem  spot  in  its  mobile 
strategy  for  the  Enterprise  and  EnterpriseOne  software  —  syn¬ 
chronization  that  required  user  initiation. 

With  Intellisync,  users  now  can  access  the  PeopleSoft  applica¬ 
tions  without  worrying  about  whether  the  data  is  synched  with 
the  server;  the  Intellisync  tools  handle  the  synchronization  invis¬ 
ibly  Intellisync  Mobile  Suite  comprises  an  e-mail  accelerator, 
data-  and  file-synchronization  tools  and  systems  management 
software.  The  suite  is  compatible  with  laptops;  tablet  PCs;  Win¬ 
dows  Mobile-based  smart  phones;  and  handheld  devices  based 
on  the  Pocket  PC,  Palm  OS  and  Symbian  operating  systems. 

Still,  it’s  hard  to  escape  the  conclusion  that  ERP  vendors’  lack 
of  progress  toward  the  mobility  ideal  has  disappointed,  even 
alienated, some  corporations. Such  was  the  case  for  Gold  Medal 
Bakery  a  user  of  SAP’s  ERP  software. 

This  private-label  provider  of  baked  goods  in  the  Northeast 
began  using  the  ERP  application  in  2003.  Shortly  thereafter,  it 
eagerly  began  exploring  if  it  could  take  advantage  of  SAP’s 

See  Mobility,  page  70 
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Consider  the  dots  connected.  Supported  by  a  new,  dedicated  ATM  network  we 
designed,  delivered  and  now  manage,  Huntington  National  Bank  launched  a  series 
of  cutting-edge  applications  that  improved  customer  satisfaction.  Which  is  directly 
related  to  another  benefit  of  the  more  powerful  network-scalability  as  the  bank 
continues  to  grow  and  prosper.  Find  out  more  about  how  we’re  helping  Huntington 
National  Bank  connect  the  dots  at  sbc.com/dots.  GOING  BEYOND  THE  CALL.* 
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continued  from  page  68 

mobility  solutions  for  its  70  sales  reps. 
However, “it  looked  to  us  like  [SAP]  was  in 


the  concept  stage,”  says  Joe  Walsh,  sales 
operations  director  for  the  Fall  River,  Mass., 
company“Any  info  we  could  get  was  vague, 
and  we  didn’t  see  a  lot  of  working  models 
in  the  real  world.” 

That  prompted  Gold  Medal  to  research 


smaller  vendors;  the  company  opted  for  a 
suite  of  specialized  mobile  applications 
from  Eleven.  The  company  decided  that 
additional  effort  needed  to  integrate 
Eleven’s  Smartretail  software  for  mobile 
workforces  would  be  more  than  offset  by 


the  applications  features  and  interface, 
Walsh  says.  These  were  superior  to  those 
available  from  SAP  at  the  time,  he  adds. 

Responding  to  these  scrappy  mobile 
application  specialists  —  which  analysts 
see  as  potential  acquisition  targets  —  the 
big  enterprise  players  are  touting  the  ease 
of  integration  a  user  gets  by  sticking  with 
one  vendor  for  enterprise  applications  in 
and  out  of  the  office. 

Oracle  has  built  mobility  into  its  standard 
application  server  and  database  products 
so  customers  can  build  unique  applica¬ 
tions  for  their  field  workers  on  top  of 
Oracle’s  mobile  architecture,  says  Jacob 
Christfort,  CTO  with  Oracle’s  Voice  &  Wire¬ 
less  Division.  Enterprise  buyers  get  the  tech¬ 
nology  by  default,  facing  no  additional 
license  fees. 

“With  back-office  [users] ,  there’s  a  lot  of 
information  being  exchanged,  and  it’s 
being  sent  back  and  forth  to  many  depart¬ 
ments,”  Christfort  says.  As  a  result,  compa¬ 
nies  place  a  premium  on  the  standardiza¬ 
tion  of  data  provided  through  the  enter¬ 
prise  software.  But  data  format  standardiza¬ 
tion  isn’t  so  important  for  field  workers  and 
sales  reps  using  mobile  devices,  he  con¬ 
tends.  “You’re  out  there  at  the  en,d  of  your 
spoke  —  you’re  not  so  worried  about  stan¬ 
dardization  out  there. . . .  Mobile  workers  are 
in  the  physical  world,  and  the  physical 
world  has  some  rough  edges.” 

SARtoo,has  added  mobility  to  its  applica¬ 
tion  development  platform  (called  Net- 
Weaver)  so  enterprise  customers  can  cre¬ 
ate  their  own  mobile  applications.  But 
SAP’s  approach  differs  from  competitive 
strategies  on  the  client  side.  SAP  requires 
that  a  Mobile  Infrastructure  client  (consist¬ 
ing  of  a  Web  server,  a  database  layer  and 
business  logic)  be  installed  on  each 
mobile  device.  When  remote  users  access 
applications  using  PDAs,  they  work  with  the 
most  recent  data.  Changes  they  make  then 
are  replicated  back  to  the  central  data 
source. 

“This  gives  IT  a  lot  of  flexibility  because 
they’re  not  tied  to an’operating system, says 
Michael  King,  a  Gartner  analyst.  Thus,  an 
application  written  for  a  Pocket  PC  also  can 
run  on  a  laptop, a  tablet  PC  and  any  device 
that  supports  Java. 

Despite  the  progress  big  application  ven¬ 
dors  have  made,  it’s  difficult  to  remain 
patient  waiting  for  them  to  deliver  true 
seamless  mobile  solutions. The  benefits  — 
among  them  less  integration,  rapid  access 
to  a  true  single  data  source  and  confidence 
in  the  long-term  survival  of  the  provider  — 
are  clear.  Mobility  is  becoming  too  impor¬ 
tant  to  hold  off  for  a  utopian  blend  of  seam¬ 
lessness,  ever-present  real-time  communi¬ 
cation  and  infinitely  flexible  interfaces. 

Ulfelder  is  a  freelance  technology  writer.  He 
can  be  reached  at  sulfelder@charter.net. 
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Find  out  about  how  IBM's  Workplace 
Client  Technology  fits  into  the  mobility 
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■  PerfectDisk  ^ 
Version  7.0 
Now  Available! 
The  Best  Defragger 
Just  Got 


Better! 


When  Gibson  Guitar  Corp.  selected 
PerfectDisk®  as  their  official  defragmentation 
software,  it  was  music  to  our  ears.  After  all,  Gibson 
guitars  are  synonymous  with  artistry,  innovation  and 
quality.  Gibson  instruments  are  held  in  unparalleled 
esteem  by  the  world's  top  musicians  and  coveted  by 
music  lovers  everywhere. 

And  while  Gibson  is  known  for  its  classic  styling 
and  meticulous  craftsmanship,  the  company  is  also 
one  digitally-savvy,  big  daddy  of  technological 
sophistication.  That's  why  Gibson  counts  on 
PerfectDisk  to  keep  every  disk  in  their  enterprise 
perfectly  tuned  and  ready  to  roll. 

It's  not  surprising  that  a  future-focused  company 
built  on  legendary  quality  would  demand  the  world's 
fastest  and  most  powerful  defragger.  You  see, 


PerfectDisk  is  the  only  defragmenter 
certified  by  Microsoft®  for  Windows® 

TM 

2000  and  Windows  Server  2003,  and  fully 
integrated  with  Microsoft's  Active  Directory®. 
What's  more,  unlike  those  other  defraggers, 
PerfectDisk  runs  on  all  server  versions  of  Windows, 
even  on  multi-terabyte  drives,  without  charging  you 
a  premium.  PerfectDisk  defragments  your  disk  and 
consolidates  free  space,  all  in  a  single  harmonious 
pass.  Rock  on. 

Keep  your  disks  in  perfect  tune.  Trust  the 
proven  solution  from  the  leaders  in  performance 
software  for  over  25  years...  Raxco  Software.  See 
for  yourself,  download  a  free  demo  copy  today  at 
www.perfectdisk.com/rockon/nww. 

www.perfectdisk.com/rockon/nww 


_  software 

Perfect  Software  for  an  Imperfect  World 


1-800-546-9728 

www.raxco.com 


Microsoft 

GOLD  CERTIFIED 

Partner 
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■  ;th  productivity  growth  at  an  all-time,  Erik  Brynjolfsson,  director  of  MIT’s  Center 
*or  eBusiness,  has  been  researching  just  how  much  influence  electronic  busi- 
■I  ness  systems  and  the  extended  enterprise  have  had  on  this  economic  rnea- 
llll  suremsm.  :r  a  recent  interview  with  Signature  Series  Executive  Editor  Julie 
EgT  Son.  •BtynjQifsson  revealed  the  hidden  traits  of  companies  that  use  technology 

B  to  the  best  productivity  effect.  He  calls  these  companies  "digital  organizations.” 

■ 

H  How  have  the  e-business  and  the  extended  enterprise  trends  affected  the  cora¬ 
tsing  technology  to  increase  productivity? 

In  most  of  the  20th  century,  you  could  make  a  pretty  clean  distinction  between 
what  happened  between  firms  —  markets  —  vs.  what  happened  inside  a  firm  — 
h  hierarchies.  Markets  tended  to  have  very  simple  kinds  of  communications. 
Prices  and  quantities  are  examples.  Inside  the  organization  much  of  the  commu¬ 
nication  flow  was  command  and  control.  Now  we  are  seeing  the  communication 
flows  become,  richer  and  more  complicated.  We’re  seeing  relationships  that  are 
neither  markets  nor  hierarchies  —  they  are  really  more  like  networks,  partner¬ 
ships  and  value-adding  relationships. 

yet.  referring  to  exchange  hubs,  where  competitors  interact? 

No,  I’m  thinking  more  like  long-term  supplier  relationships  where  very  rich  data 
might  be  exchanged  —  the  way  Boeing  exchanges  CAD  data  with  its  suppliers  or 
Dell  with  its  suppliers,  or  Wal-Mart  exchanging  information  with  Procter  &  Gamble. 
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The  data  exchange  is  much  richer  than  simply  We’ll  place  an 
order  off  of  your  product  list  for  this  price  and  quantity  It’s  more 
like,  ‘Here  are  our  customer  needs  and  specifications.  Here  are 
some  product  components  that  we’d  like  you  to  help  us  design. 
Here’s  what  some  of  our  other  partners  are  doing.’ And  gigabytes  of 
data  are  being  exchanged,  whether  that’s  standard  data  or  CAD 
drawings.  This  isn’t  the  classic  market  system  anymore.  It’s  really 
something  that  we’ve  never  seen  before  that  relies  on  intensive 
data  communications,  on  new  levels  of  trust  and  on  institutions 
that  are  at  least  as  important  as  the  technology  infrastructure. 
What  are  these  institutions? 

Outsourcing  is  an  example.  In  many  cases  people  may  even  be 
physically  working  side-by-side,  but  technically  be  working  for 
different  companies. You  may  bring  together  people  from  differ¬ 
ent  companies  to  work  together  for  a  new  product  launch  or  a 
new  service.  Some  industries  have  been  organized  like  this  for 
years,  Hollywood  —  the  way  they  make  movies  —  and  construc¬ 
tion.  It’s  a  more  flexible  kind  of  relationship  that  network  tech¬ 
nology  is  making  feasible  in  a  lot  of  other  industries. 

What  is  an  IT  executive’s  role  in  this  new  structure? 

These  inter-organizational  systems  really  require  a  lot  more 
coordination  between  technology  and  the  business  side.  One 
way  to  achieve  that  is  through  more  dialog  between  business 
units  and  the  IT  people,  and  more  business  knowledge  on  the 
part  of  the  technology  people.  And  also  —  something  that  seems 
to  get  neglected  whenever  people  talk  about  this  —  it  requires  a 
lot  more  technology  know-how  on  the  part  of  the  business  unit 
types,  especially  the  CEO.  You  can’t,  in  today’s  world,  formulate 
successful  business  strategy  without  knowing  the  technological 
opportunities.  I’m  talking  about  a  deep  understanding  of  what 
technology  can  do,  what  the  underlying  trends  are  in  communi¬ 
cation  speeds  and  processing,  and  what  can  be  done  with  things 
like  voice  recognition,  RFID,  wireless. 

There  are  those  saying  technology  is  reaching  a  stage  of  matu¬ 
rity  where  the  low  hanging  fruit  is  all  gone.  Nothing  could  be  fur¬ 
ther  from  the  truth.The  fact  is,  if  you  look  at  the  underlying  trends, 
at  the  chip  level,  basic  communications  or  software,  all  the  per¬ 
formance  measures  are  increasing  as  fast  if  not  faster  than  they 
were  10  years  ago.  Then  consider  that  technology  use  is  on  a 
much  bigger  base  now  than  it  used  to  be,  and  basic  arithmetic 
indicates  that  the  effects  on  the  economy  are  likely  to  be  larger 
not  smaller.  The  pace  of  change  is  accelerating. 

What  do  the  new  organizational  structures  entail? 

We  identified  a  set  of  seven  practices  we  called  collectively  the 
digital  organization.  These  were  practices  that  correlated  with 
significantly  higher  productivity  and  stock  market  performance. 
One  involves  greater  decentralization  of  human  decision-mak¬ 
ing.  Another  is  machine-readable  or  rule-based  decision-making 
becoming  more  centralized.  So  we’ve  got  simultaneously  cen¬ 
tralizing  and  decentralizing,  depending  on  the  type  of  decisions. 

In  digital  organizations,  decisions  don’t  have  to  be  made  or 
checked  by  the  people  at  the  top  all  the  time.  Incentive  sys¬ 
tems  get  people  to  do  the  right  thing.  These  companies  were 
more  likely  to  have  performance-based  rewards,  pay,  promo¬ 
tions  and  more  likely  to  use  broadly  distributed  stock  options 
and  other  types  of  bonuses  related  to  performance. The  theo¬ 
ry  and  the  practice  suggest  that  those  help  people  make  the 
right  decisions. 

We  also  found  that  digital  organizations  work  hard  at  main¬ 
taining  a  consistent  corporate  culture.  Economic  incentives  can 
help  —  profit  sharing  and  bonuses  —  but  there  are  things  you 
can’t  attach  to  a  quantitative  goal.  The  culture  helps  people 
focus  on  the  things  that  the  company  thinks  is  most  important, 
whether  that’s  customer  service  or  quality  or  creativity  Digital 
companies  invest  more  in  training  when  they  hire  people. They 
work  a  lot  harder  at  identifying  good  candidates  for  each  posi¬ 
tion  and  they  pay  more.  One  fear  was  the  way  these  companies 
were  achieving  high  profit  fulfillments  was  through  some 
kind  of  a  zero  sum  gain  effect  —  getting  people  to  work 
more,  an  electronic  whip,  more  hours  a  day  squeezed  out 
of  them.  But  the  data  suggested  that  employees  were  hap¬ 
pier  in  these  organizations.* 
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3Com 

Wireless  Mobility  System™ 

Making  the  Right  Choice  in  Wireless.  3Com’s  new,  scalable  Wireless 
Mobility  System™  is  everything  you  want  from  wireless  networking 
in  a  single  solution.  From  automated,  customized  site  planning 
tools,  to  centralized  management  and  user/group  security  profiles, 
this  scalable  switching  solution  is  engineered  to  meet  current  and 
future  needs.  To  learn  more,  register  to  attend  a  free  online  seminar 
at  www.3Com.com/wireless. 

508-323-5000  •  www.3Com.com/wireless 


Berkeley  Varitronics  Systems 

Yellowjacket  802.1  lb/g  Wi-Fi  Test  Receiver 

Yellowjacket  802.1  lb/g  is  a  calibrated  wireless  receiver  system  that 
interfaces  with  HP’s  iPAQ®  PocketPC®  in  sweeping,  analyzing  and 
optimizing  2.4  GHz  Wi-Fi  Networks.  The  receiver  measures  all  14 
OFDM/DSSS  network  channels  for  spectrum  analysis  of  any  access 
point’s  MAC,  SSID  and  RSS1  signal  levels  on  or  off  any  802.1  lb/g 
WISP  or  Hotspot. 

732-548-3737  •  www.bvsystems.com 


BLUECAT  NETWORKS' 

BlueCat  Networks,  Inc. 

BlueCat  Networks’  simple,  secure,  and  affordable  appliances 
enable  network  administrators  to  implement  complex  networking 
technologies  in  a  matter  of  minutes.  The  award-winning  Adonis 
DNS  Management  Server  appliance  removes  the  complexity  and 
simplifies  the  management  of  DNS  securely.  The  Meridius  Security 
Gateway  appliance  stops  spam  and  viruses  with  its  multi-level  spam 
prevention  system. 

905-882-5691  •  www.bluecatnetworks.com 


Computerwise,  Inc. 

TCP/IP  Digital  Wall  Clock/Readout 

The  ED210  Digital  Wall  Clock/Display  offers  the  means  to  automati¬ 
cally  synchronize  all  the  displayed  time  throughout  reaches  of  your 
LAN.  The  ED210  has  four  inch  high  numerals  that  can  be  read  from 
100+  feet.  Synchronize  your  workforce!  Contact  William  Brown  for 
further  information  and  pricing. 

800-255-3739  •  www.computerwise.com 


Equinox 

Secure  Console  Management  Over  IP 

The  CCM840,  CCM1640,  and  CCM4850  available  in  8-,  16-,  and 
48-port  models,  deliver  secure  and  reliable  serial  over  IP  access 
to  console  ports  of  servers  and  serially  managed  devices  such 
as  network  hubs  and  routers.  Includes  AVWorks®  management 
software,  which  provides  secure  point  and  click  access  to  serial 
devices. 

800-275-3500  •  www.equinox.com 


Global  Technology  Associates,  Inc. 

GTA  Firewall  Appliances 

EXPERIENCE  COUNTS!  GTA’s  family  of  ICSA  4.0  corporate  certified, 

full-featured  firewall  appliances  includes  —  the  GB-1500  and 

GB-1200  for  SME  businesses,  and  the  GB-750,  500  and  200  for 

remote  or  branch  offices  —  performance,  reliability,  and  over 

10  years  experience  in  the  firewall  business.  SIMPLE,  POWERFUL, 

AFFORDABLE.  | 

407-380-0220  •  www.gta.com  5 
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LANTRONIX8 

Lantronix 

Data  Center  Management  Products 


iPass  Inc. 

iPass  delivers  simple,  secure  and  manageable  connectivity  services, 
combining  its  global  network  with  support  for  campus  wireless 
LANs  and  home  broadband  connections  to  deliver  a  unified  and 
comprehensive  solution.  The  award-winning  user  interface,  central¬ 
ized  management,  leading  security  features  and  powerful  policy 
enforcement  make  iPass  services  the  choice  of  hundreds  of  Global 
2000  corporations. 

650-232-4100  •  www.ipass.com 


Lantronix  (NASDAQ:  LTRX)  is  a  leading  provider  of  secure  network 
management  and  device  connectivity  solutions,  giving  IT  profession¬ 
als  power  to  access  and  manage  data  center  infrastructure  regard¬ 
less  of  location,  even  when  servers  and  networks  are  down.  Over 
two  million  Lantronix  products  are  deployed  at  more  than  20,000 
sites  worldwide. 

800-422-7055  •  www.lantronix.com 


IPxray 

IPxray  provides  pain-free  network  vulnerability  assessment.  Its 
real-time,  hosted  remote  solutions  provide  an  effective  way  for  IT 
departments  and  network  security  consultants  to  quickly  see  their 
network  the  way  a  hacker  would.  IPxray  offers  a  FREE  2-week  trial 
to  businesses  allowing  them  to  gain  actionable  intelligence  regard¬ 
ing  their  network  security. 

866-297-0765  •  www.ipxray.com 


NETWORK8 

INSTRUMENTS 


Network  Instruments,  LLC 

Observer® 

Choose  a  network  analyzer  that  puts  you  in  the  driver’s  seat. 
Network  Instruments  is  the  industry  leading  developer  of 
Observer®,  an  award-winning  network  analyzer  providing  distrib¬ 
uted,  user-friendly  and  affordable  management,  for  the  entire  net¬ 
work  (Ethernet,  Gigabit,  Wireless,  and  WAN).  Test-drive  a  free  two- 
week  evaluation  copy  today.  Visit  www.networkinstruments.com. 
800-526-7919  /  952-932-9899  •  www.networkinstruments.com 


IT  Watchdogs,  Inc. 

Weather  Goose 

What’s  the  climate  in  your  server  room  or  computer  cabinet?  Too 
hot,  too  wet,  no  air  flow?  The  $389  Weather  Goose  mounts  in  a  1-U 
rack  space.  The  Weather  Goose  e-mails  or  pages  you  when  the  envi¬ 
ronment  becomes  equipment-threatening.  See  what’s  going  on  with 
an  optional  web  cam.  Web  pages  are  internally  generated  —  see 
trends  with  graphs.  Includes  SNMP,  cell  phone  display,  PDA  display 
and  Excel  downloads.  Up  to  eight  cabinets  can  be  monitored  with 
remote  sensors.  Simple  installation.  See  it  work  at  www.weather- 
goose.com. 

512-257-1462  •  www.itwatchdogs.com 


Hi  Raritan. 

When  you’re  ready  to  take  control.™ 

Raritan  Computer,  Inc. 

Dominion®  KX,  Dominion  SX,  Paragon®  II, 
CommandCenter™ 

Raritan  Computer  Inc.  is  a  leading  supplier  of  IT  infrastructure  man¬ 
agement  solutions  for  secure  access,  monitoring,  and  management 
of  servers  and  other  IT  devices  in  data  centers  and  remote  offices. 
Raritan’s  digital  and  analog  KVM  switches,-  serial  console  servers, 
and  remote  connectivity  products  offer  IT  professionals  the  most 
reliable,  flexible,  and  secure  solutions  to  manage  IT  equipment  from 
anywhere,  while  improving  operational  productivity. 

800-724-8090  /  732-764-8886  •  www.raritan.com 
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ELECTRONICS 


Rose  Electronics 

Server  Management  Solutions 

Recognized  as  the  pioneer  of  KVM  switch  technology,  Rose  Electronics 
offers  the  industry’s  most  comprehensive  range  of  server  management 
products  such  as  KVM  switches,  KVM  extenders,  KVM  drawers  and 
KVM  over  IP  solutions.  Rose  Electronics  products  are  known  for  their 
quality,  scalability,  ease  of  use  and  innovative  technology. 
800-333-9343  /  281-933-7673  •  www.rose.com 


IMS-4DOO 


Sensaphone 

IMS-4000 

The  new  Infrastructure  Monitoring  System  IMS-4000  has  built-in  fea¬ 
tures  to  monitor  network  environment  and  IP  devices,  automatically 
sending  alarm  messages  to  remote  personnel.  This  unique  scalable 
system  can  protect  networks  of  all  sizes  and  complexities.  Its  data 
logging  feature  provides  full  event  history  and  an  audit  trail  allowing 
managers  to  store  critical  information  plus  detect  alarm  occurrence. 
877-373-2700  /  610-558-2700  •  www.sensaphone.com 


SMC 

Platinum  Enclosures 

Designed  to  accommodate  the  new  technologies  in  power,  ventila¬ 
tion  and  security,  Platinum™  enclosures  from  SMC  address  the 
complexity  of  today’s  data  center  management  challenges.  This 
feature-rich,  flexibly  designed  enclosure  is  perfect  for  applications 
requiring  smart,  cost-effective  solutions.  Keypad  entry  and  remote 
monitoring  options  are  available  when  SmartCabinet  II  options  are 
specified. 

800-SMC-PLUS  (762-7587)  •  www.smcplus.com 


Steel  &  Aluminum  Racks  I 


Depth  Rail  Set  Height  Rail  Set 


SmSm 

S.I.  TECH 

Ethernet  Switch  and  Media  Converters 

S.I.  TECH  is  a  leading  manufacturer  of  Fiber  Optic  Communication 
Products.  S.I.  TECH,  celebrating  its  20th  anniversary  this  year,  sup¬ 
plies  Fiber  Optic  Products  throughout  the  world,  and  is  ISO-9001- 
2000  certified.  Products  include:  Fiber  Optic  Modems,  Multiplexers, 
Media  converters,  Hubs,  Ethernet  Switches,  LAN/WAN  products, 
Video/Audio  products,  and  Cable  assemblies. 

630-761-3640  •  www.sitech-bitdriver.com 


Star  Case  Mfg.  Co.,  Inc. 

Star  Case  Steel  &  Aluminum  Racks 

Star  Case,  a  manufacturer  of  custom  and  stock  ATA  compliant  ship¬ 
ping  and  carrying  cases,  introduces  a  Modular  Rack  System  using 
only  3  unique  specially  designed  parts;  “patent  pending”  connecting 
corners,  rack  rails  and  dog  point  screws,  create  79,507  possible  size 
variations  to  secure  industry  standard  19  inch  rack  mountable  elec¬ 
tronic  equipment.  Every  steel  and  aerospace  aluminum  rack  ships 
knocked-down  in  only  3  small  cartons. 

800-822-STAR  (7827)  •  www.starcase.com/rack.htm 
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FORESIGHT 


INSTRUMENTS 


How  much  does  your  network  analyzer  see? 

Observer  is  the  only  fully  distributed  network  analyzer  built 
to  monitor  the  entire  network  (LAN,  802.1 1  a/b/g.  Gigabit, 
WAN).  Download  your  free  Observer  10  evaluation  today 
and  see  how  Observer  puts  you  in  the  driver's  seat  with  more 
real-time  statistics,  more  in-depth  analysis  and  more  network 
advantages  than  ever  before.  Choose  Observer. 

-CRPRC  i  tv  Pi_mn  i  no-  Determine  how  much  bandwidth 
your  router  will  need  based  on  historical  usage  patterns  with 
Network  Trending. 

-foresight-  Predict  how  network  changes  will  affect 
your  response  times  with  "What-lf" 1  Modeling  Analysis. 

-no  S  i  onRL  -  Find  rogue  access  points,  monitor  access 
point  load  and  scan  wireless  channels  continuously  with  over 
50  WLAN  Expert  Conditions. 

US  &  Canada  toll  free  800.526.5958 

fax  952.932.9545 

UK  &  Europe  +44(0)1959569880 

www.networkinstruments.com/analyze 


EQUINOX  Secure  Console  Port  Management 

an  Avocent  Company 


Your  virtual  crash  cart 


For  your  free  white  paper  on 
Best  Practices  for  Secure 
Console  Port  Management  visit 

www.equinox.com/ccm4 

For  a  30-day  product  evaluation 
call  1-800-275-3500  ext.  247  or 
954-746-9000  ext.  247 


Telnet 

Client 


CCM  Console 
Manager 


Network 


Serial 


SSH 

Client 


AVWorks 
Software  Client 


Local 

Terminal 


Oial  Access 
Client  OR 


Modem 


Linux  Server 


Unix  Server 


Windows  Server 


Router 


Switch 


Power 


Control 


Extend  Your  Reach 


Relax  and  fix  the  problem  from  virtually  anywhere. 

When  critical  servers  or  network  equipment  malfunction, 
the  Equinox  CCM  console  manager  and  AVWorks® 
management  software  give  you  the  tools  to  securely  and 
quickly  restore  normal  functionality  from  anywhere. 


CCM  Console  Manager  features: 


■  SSH  v2/Telnet  host  ■  In/out  of  band  access 

■  Strong  authentication  ■  Point  and  click  access 

■  Offline  buffering  to  serial  consoles,  KVM 

■  SUN  break  safe  and  power* 


*  To  be  provided  in  future  upgrade  for  the  48-port  model. 


L 


One  Equinox  Way,  Sunrise  FL  33351,  email:  sales@equinox.com  or  for  international  customers  email:  intlsales@equinox.com. 

©  2004  Avocent  Corporation.  Equinox  and  AVWorks  are  registered  trademarks  of  Avocent  Corporation  or  its  affiliates.  All  other  marks  are  the  property  of  their  respective  owners. 


Web -based  access 


Centralized  system  management- 
Remote  incident  'resell 


KVM  over  IP 


Secure  KVM  over  IP  switch 


Cyclades  AlterPath™  KVM/net 
offers  a  unique  set  of  features: 

■  Server-based  authentication 

(NT  domain,  LDAP,  Secure  ID,  RADIUS,  TACACS+) 

■  16  and  32  port  models 

■  CAT5  cabling  up  to  500  feet 

■  User  access  logging 

■  System  event  syslog 
■Integrated  power  management 

We've  worked  our  magic. 

Now  you  can  work  yours. 


Over  80%  of  Fortune  100 
choose  Cyclades. 

www.cyclades.com/nw 

1 .88S.cyclades  •  sales@cyclades.com 


cyclades 


©fflW  Cydodes  Corporation.  AH  rights  resenretj.  Ail  other  trademarks  anti  pradufl  images  ore  property  of  their  respective  ownets.  Produrt  information  saltiest  to  thonge  without  notiro. 


Sniffers,  probes,  and  IDS  can  be  a  network  manager's  best 
friends.  But  how  many  are  enough?  Don't  spend  thousands 
on  unnecessary  analysis  hardware  and  software. 

Centralize,  share,  and  manage  your  monitoring  equipment  with 
IntellaPatch  -  your  new  best  friend. 

IntellaPatch  features  remote  management  and  non-intrusive 
switching  capabilities.  You  save  valuable  time,  eliminate 
redundant  equipment,  and  reduce  ongoing  maintenance  costs. 

Now  you  can  manage  your  sniffers,  and  your  budget,  without 
losing  your  sense. 

INTELLAPATCH  Physical  Layer  Switches 


Learn  more  about  how  sniffer  sharing  with  APCON  physical  layer  switch 
solutions  will  benefit  your  bottom  line.  Visit  www.apcon.com/share  to 
download  our  application  brief  and  white  paper. 

O  APCON 

rWW.apeon.CQm  Solutions  for  Networks  1.800.624.6808 


Ethernet 
Fibre  Channel 
SONET/SDH 


Network  Boot  Bar 


Control  Power  on  Any  AC 
Powered  Device ... 

Via  Web  Browser,  Telnet, 

Modem  or  Local  Terminal 

Servers,  routers,  and  other  electronic  equipment 
occasionally  “lock-up”,  often  requiring  a  service  call 
to  a  remote  site  just  to  flip  the  power  switch  to  perform 
a  simple  reboot.  With  WTI’s  Remote  Power  Switches, 
you  can  perform  reboot  and  On/Off  control  from 
anywhere! 

©  Web  Browser  Access  for  Easy  Setup  and 
Operation 

©  Encrypted  Password  Security 

©  Dual  15  Amp  Power  Circuits 
Total  30  Amps  Maximum  Load 

©  115  VAC  and  230  VAC  Models 
©  Sixteen  (16)  Individual  Outlets 
©  RS232  Modem  /  Console  Port 
©  Network  Security  Features 
©  Power-Up  Sequencing 

©  Also  Available  in  4,  8  &  16  Plug  Models  and 
Horizontal  1U  and  2U  Models 


Want  an  On-Line  Demo? 

Just  call  or  email  and  you’ll  see  for  yourself  why  so  many 
network  professionals  choose  WTI. 


Yes,  We  are  Customer  Friendly! 

V  Two  Year  Warranty 

V  We  Stock  for  Same  Day  Shipment 
>/  30  Day  No-Fee  Return  Policy 

>/  Start-up  Cables  and  Rack  Kits  Included 


Dual 

Power 

Inputs 


N 


el 

1600 


www.wti.com 


western  telematic  incorporated 

5  Sterling  •  Irvine  •  California  •  92618-2517  •  (800)  854-7226 


Your  company 
Vis  growing 
and  you  need 
more  servers. 


More  cabli 


More  spa 
More  cost 
More  KVM  po 
More  downtime 
More  confusion 
More 
More 


Paragon®  II.  Stackable  Data  Center  KVM  Control  that  Saves  Time,  Space  &  Money. 


The  downside  to  success  is  the  complexity  that  comes  with  it.  That’s  why  Raritan  builds  solutions  for  the  data  center  that  reduce  complexity 
when  it  comes  time  to  manage  a  growing  stable  of  servers  and  other  data  center  devices.  Case  in  point:  Paragon  II,  the  industry’s  only  stackable 
KVM  (Keyboard, Video,  Mouse)  switch.  The  highest  port-density  in  the  industry  delivers  lower  ownership  costs.  Up  to  30%  lower.  With 
Paragon  M’s  stacking  capability,  you’ll  use  90%  less  cable  than  if  you  cascaded  switches,  and  you’ll  save  a  third  of  your  rack  space.  And  with 
Paragon  Manager"  software,  remote  administration  is  as  easy  as  point-and-click.  All  of  which  makes  you  better  equipped  to  securely  access, 
monitor,  configure,  and  even  reboot  your  servers  and  other  IT  devices  as  if  you  were  actually  present  at  the  rack.  And  that’s  good  news. 


Call  today  and  get  a  free  KVM  Stacking  Guide. 
1-800-724-8090x1992 
or  visit  Raritan.com/992 


Command 

Center 


Paragon  II,  the  world's  leading  analog 
KVM  Switch,  is  a  core  building  block  of 
Raritan's  Complete  Data  Center 
Management  Solution. 


Dominion 

Series 


Paragon  II 


IP-Reach 


When  you're  ready  to  take  control 


How  Do  You 


Sentry  CDU  Cabinet  Power  Distribution 

■  - 

High-density  Equipment  Cabient  Power  Distribution 

84-Outlet  Receptacles  - 

20,000  Watt  3-Phase  Power  Distribution  Model  - 

1 0,000  Watt  208  VAC  Power  Distribution  Model  « 

True  RMS  Power  Monitoring  per  Branch  Circuit « 
Local:  Digitial  Displays,  Remote:  via  Interface 

Input  Power  Monitoring  Facilitates  Load  Balancing  « 

Web  Interface 

SNMP,  MIB  &  Traps 

Integrated  Temperature  &  Humidity  Probes 

Color-coded  Outlets  by  Branch  Circuit/Electrical  •• 
Phase  for  Easy  Identification 

Center  Rail  "Notch”  for  Simplifying  Cabinet  Installation  « 


©Server  Technology,  Inc.  Sentry  is  a  trademark  of  Server  Technology.  Inc. 


Technology 

Solutions  for  the  Data  Center  Equipment  Cabinet 

Power  demands  from 
today's  new  servers  require 
greater  power  distribution 
in  the  equipment  cabinet. 
The  Sentry  CDU  distributes 
power  for  up  to  42  dual¬ 
power  1 U  servers  in  one 
enclosure.  Single-phase  or 
3-phase  input  with  110  VAC, 
208  VAC  or  mixed  110/208 
VAC  single-phase  outlet 
receptacles. 


Server  Technology,  Inc. 

1040  Sandhill  Drive 
Reno,  NV  89521 -USA 

Kpjjl  toll  free  +1 .800.835.1 51 5 
LSal  tel +1.775.284.2000 
I  I  fax +1.775.284.2065 
www.servertech.com 
sales@servertech.com 


SENSAPHONE 

iftjf 


5-4DDO 


Sends 

SNMP 
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64 
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Embedded 
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Power 

Control 

Interface 


Internal  Voice, 
Ethernet  Modem 
Port  &  Pager  Port 


8  R|-45  Sensor  Inputs 

(Temperature,  Humidity, 
Water,  Motion,  Power, 
Smoke/Fire) 


Microphone 

for  Sound 
Monitoring 


BE  NOTIFIED  BEFORE  CRITICAL  EVENTS  TURN  INTO  DISASTER! 


•  Eight  environment  inputs 

•  Power  sensing 

•  Monitors  64  IP  addresses 

•  Send  alerts  to  64  people 

•  8  methods  of  contact 

•  Calendar  scheduling 

•  Expands  to  256  sensors 

•  Remote  power  control 

•  Optional  camera 


The  Sensaphone  IMS-4000  Infrastructure 
Monitoring  System  monitors  critical  environ¬ 
mental  and  network  elements  in  your  server 
room,  data  center,  or  telecomm  installation  and 
reports  to  you  instantly  when  events  threaten 
your  infrastructure.  The  IMS-4000  keeps  watch 
so  you  don't  have  to.  See  these  features  and 
more  on  the  web  at  www.ims-4000.com 


Ethernet  Terminals  from 
ComputerWise  connected  to 
your  in-house  LAN. 

Capture  production  data 
directly  into  files  on  your 
server. 


Features  C  Benefits 

4  •  Interactive  Telnet  Client 
>.  TCP/IP  over  10/IOOBaseT  Ethernet 
'  /•  Built-in  Barcode  Badge  Reader 
.  •  Optional  Mag-Stripe  &  RFID  Badge  Reader 
•  Auxiliary  RS-232  Serial  port 
Customizable  Data  Collection 
|  y  Program  Included 
iA  *  Larger  keyboard  and 

display  sizes  available  x 


KBliWBE 


3739  or  visit  www.cnmputerwise.com 


www.smcplus.com/tips 

sme 

Technical  Furniture  Solutions 

Unique  technical  furniture 
solutions  at  your  fingertips 

Total  Solutions  in  >  enterprise  enclosures 

>  network  operations  centers 

>  monitoring  &  management  control 

Log  on  for  free  "Practical  Guide  to  Cooling" 

PO  Box  431  •  Conklin,  NY  13748 

7 -800-SMC-PLUS  •  www.smcplus.com 

A  wholly  owned  subsidiary  of  Fisher  Hamilton,  LLC 

,^MCOB4Lr. 


Tel:  408.727.1122 
Fax:  408.727.8002 

343  1  DE  LA  CRUZ  BLVD. 


SeCU^R^jt 

technologies,  inc. 
SANTA  CLARA,  CA  95054 
INFQ@RECURRENT.CDM 


WWW.RECURRENT.COM 


W  BLUECAT  NETWORKS' 


6:03  PM:  DNS  GOES  DOWN 

3:03  AM:  YOU’RE  CONVINCED  IT’S 

A  SIMPLE  ERROR,  BUT 
WHERE  IS  IT? 

9:08  AM:  YOUR  WIFE  CALLS  - 

NOW  SHE’S  UPSET 


The  Adonis  DNS/DHCP  Appliance™ 
finds  errors  instantly. 


Reclaim  Your  Network  And  Get  Your  Life  Back! 


<^INSIDETHEDDMA1N" 

www  bluecatnetworks.  com/subscribe 


©Adonis 


BlueCat  Networks 


simple,  secure  and  affordable  appliances 


Call  us: 

1.866.895.6931 


Schedule  your  free  demo  today. 

Visit  www.bluecatnetworks.com/adonis/nww 


BlueCat  Networks,  the  BlueCat  Networks  logo.  Adonis  ONS/DHCP  Appliance.  XHA  and  the  Adonis  logo  are  trademarks  of  BlueCat  Networks,  Inc. 
Active  Directory  is  a  registered  trademark  of  Microsoft  Corporation. 
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Adonis  DNS/DHCP  Appliance  . 


GTA  Firewall  Products 

Tough  Network  Security 


Choose  from  5  Firewall  Appliances  to 
Match  Your  Network  Infrastructure 

Easy,  Flexible  Implementation 

Certified  to  ISCA  4.0  Corporate 
Standards 

IPSecVPN 

Surf  Sentinel®  2.0  -  Content  Filtering 


H2A  -  High  Availability 

Gigabit  Ethernet  Support 

NIC  expansions 

Affordable  pricing 

GTA  Experience  -  Building 
Firewalls  for  Over  1 0  Years 


A  New  “Patent  Pending”  Rack  Design  4  ru  13”  Deep  -  $159.85 
Assemble  Any  Size  Rack  Using  Only  3  STOCK  Parts  43  RU  30”  Deep  -  $264.85 

Choose  any  width,  depth,  &  height  of  dual-tapped  E.I.A.  rack  Shop  Online 
rail  from  one  of  43  sizes  in  1-3/4”  rack  unit  increments.  Ships  ^ 

knocked-down  in  3  small  cartons.  Build  all  kinds  of  neat  stuff !  (800)782-case  pmf 


79,507  SIZES. JN  STOCK! 


WWW.SUUCASE.COM 


Luggage,  Fine  Leather  Goods,  Gifts,  and  more! 

Tumi,  Hartmann,  Andiamo,  Samsonite,  Cross 

10%  discount  for  Network  World  readers 
Enter  code  NWW2004 
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802,11  bg  W-LAN  ANALYZER 

>  2.4  GHz  SPECTRUM  ANALYZER 
>  Duai-band  802.11b  &  g  demodulators 

>  Direction  Finding  of  Rogue  AP’s 


J Security  •  Installers  •  WISPs  •  Hotspots 


YellowJcicket™ 
Hive  Software 

Site  Initiator/Supervisor/ 
Investigator  Indoor/outdoor 
mapping  W-LAN  coverage 
solution. 


Berkeley  Varitronics  Systems  metuchen.njo^o 
(732)548-3737  www.bvsystems.com 


Climate  Monitor 

$389 


Ethernet/Web 

Temperature 
Air  Flow 
Humidity 
Door  position 
Sound 
Light  Level 
Power 

Video  optional 
16  external  sensors 


See  it  working  at: 
http://63.237.104.17 


Rack  Mounted 

Monitor  Multiple  Cabinets 

HTML  (no  client  needed) 
SMTP  (e-mail  alerts) 
SNMP  (MIB,  Traps) 
Graphing 
Console 


O  IT  Watchdogs 

www.ITWatchdogs.com 

512-257-1462 


FIBER  OPTIC  SOLUTION! 


Tl/El  &  T3/E3  Modems 
RS-232/422/485  Modems  and 
Multiplexers 

IBM  3270  Coax,  AS400  Twinax,  and 
RS6000  Modems  and  Multiplexers 
LAN  -  Arcnet/Ethernet/Token  Ring 
Video/Audio/Hubs/Repeaters 


I S  0  -  9  0  0 1 

USB  Modem  and  Hub 
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Toll  Free  866-SITech-l 
630-761-3640,  Fax  630-761-3644 
www.sitech-bitdriver.com  or  www.sitechfiber.com 
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‘  RackView™ 

KVM  RACK  DRAWER  WITH  KVM  SWITCH  OPTION 


UltraMatrix  Remote 

REMOTE  MULTIPLE  USER  KVM  MATRIX  SWITCH 
ACCESS  OVER  IP  OR  LOCALLY 


Connects  1000  computers  to  multiple  user  stations  over  IP  or  locally 
High  quality  video  up  to  1280  x  1024 
Scaling,  scrolling,  and  auto-size  features 

Secure  encrypted  operation  with  login  and  computer  access  control 
Advanced  visual  interface  (AVI) 

No  need  to  power  down  servers  to  install 
Free  lifetime  upgrade  of  firmware 
Available  in  several  models 
Easy  to  expand 
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Vista™  &  Vista-Mini 

LOW  COST  SINGLE-USER  KVM  SWITCH 
SUPPORTS  UP  TO  64  COMPUTERS 


Low  cost  and  easy  to  use 
Saves  physical  space,  equipment  and  power  costs, 
reduces  clutter 

Available  in  two  different  styles 

•  DB25  connectors,  use  Rose  UltraCable,  supports 
USB 

•  PC  connectors,  use  a  separate  cable  for  keyboard, 
mouse,  and  monitor 

Front  panel  LEDs  show  power  &  connection  status 
Heavy-duty  steel,  fully  shielded  chassis 
Rackmountable 


UltraMatrix™  E-series 

PROFESSIONAL  MULTI-USER  KVM  SWITCH 
2  -  4  KVM  STATIONS  TO  1 ,000s  OF  COMPUTERS 


PC  or  multi-platform  (  PC/Unix,  Sun,  Apple,  others) 
Advanced  visual  interface  (AVI) 

Powerful,  expandable,  low  cost 
Easy  to  expand 

No  need  to  power  down  most  servers  to  install 
Security  features  prevent  unauthorized  access 
Free  lifetime  upgrade  of  firmware 
Video  resolution  up  to  1600  x  1280 
Available  in  several  models 


Crystal  v  unvrro 


Crystal  View  m 
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Fiber 


Pro 


IVD/VGA 


DIGITAL  KVM  EXTENDERS 


OVER 


FIBER 


A  KVM  switch  allows  single  or  multiple 
workstations  to  have  local  or  remote  access  to 
multiple  computers  located  in  server  rooms  or 
on  the  desktop  regardless  of  their  platforms 
and  operating  systems.  KVM  switches  have 
traditionally  provided  cost  savings  in  reducing 
energy  and  equipment  costs  while  freeing  up 
valuable  real  estate. 


Recognized  as  the  pioneer  of  KVM  switch 
technology.  Rose  Electronics  offers  the 
industry's  most  comprehensive  range  of 
server  management  products  such  as  KVM 
switches,  extenders  and  remote  access 
solutions.  Rose  Electronics  products  are 
known  for  their  quality,  scalability,  ease  of  use 
and  innovative  technology. 


Rose  Electronics  is  privately  held  with  world- 
headquarters  in  Houston,  Texas  and  sells  its 
products  worldwide  through  a  large  network  of 
Resellers  and  Distributors.  Rose  has 
operations  in  the  United  Kingdom,  Spain, 
Germany,  Benelux,  Singapore  and  Australia. 


Rose  Electronics 
10707  Stancliff  Road 
Houston,  Texas  77099 


ROSE  US 
ROSE  EUROPE 
ROSE  ASIA 
ROSE  AUSTRALIA 


+281  933  7673 
+  44(0)  1264  850574 
+  65  6324  2322 
+  617  3388  1540 


•  Connect  to  remote  computers  over  Ethernet  or  dial-up 

•  Single,  dual,  quad  models 

•  Up  to  1280x1024  resolution,  supports  all  platforms 

•  Scaling,  scrolling,  and  auto-size  features 

•  Easy  to  install,  give  it  an  IP  address  and  run  the  remote  client,  no 
licensing  required 

•  Quad  screen  mode  allows  you  to  see  four  servers  from  one  screen 

•  Secure  encrypted  operation  with  login  and  computer  access  control 


•  Connects  up  to  1000  computers  to  a  KVM  station 

•  Models  for  4,  8,16  computers 

•  Advanced  visual  interface  (AVI) 

•  Compatible  with  Windows,  Linux,  Solaris,  and  other  O/S 

•  Connects  to  PS/2,  Sun,  USB,  or  serial  devices 

•  Converts  RS232  serial  to  VGA  and  PS/2  keyboard 

•  Free  lifetime  upgrade  of  firmware 

•  Security  features  prevent  unauthorized  access 

•  Full  emulation  of  keyboard  and  mouse  functions  for 
automatic,  simultaneous  booting 

•  Easy  to  expand 


CrystalViewCat  5  &  6 
CrystalView  Plus™ 


UltraLink™ 

REMOTE  KVM  ACCESS  OVER 
ETHERNET  OR  DIAL-UP 


UltraConsole™ 

PROFESSIONAL  SINGLE-USER  KVM  SWITCH 
SUPPORTS  UP  TO  1000  COMPUTERS 


KVM  EXTENDERS  OVER  CAT  5  &  6 


Extend  your  KVM  station  up  to  1,000  feet  from  your  computer 

using  standard  CAT  5/6  cables 

VGA,  PC,  Sun,  Serial,  Audio,  and  Mini  versions 

Available  in  2  models: 

•  Single  Access  -  Extends  keyboard,  monitor,  and  mouse 
50  to  1,000  feet  away 

•  Dual  Access  -  Allows  you  to  add  a  second  keyboard, 
monitor,  and  mouse  to  the  local  unit 

Fully  buffered  signals  to  ensure  consistent  remote  operation 
of  your  PC 
CrystalView  Plus 

Available  in  single,  dual,  and  quad  video  models 
Video  resolution  up  to  1600  x  1200 


SERVERS  WITHIN  YOUR  I 

FROM  ANYWHERE 
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800  333  9343 

WWW.ROSE.COM 
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SOFTWARE  ENGINEER 

Ovlp,  create  &  modify  computer 
appins  &  specialized  utility 
progs.  Add'!  duties  incl:  (i)  ana¬ 
lyzing  user  needs  &  dvlpng  soft¬ 
ware  solutions;  (ii)  dsgng  or  cus¬ 
tomizing  software  for  client  use 
in  an  effort  to  optimize  opera¬ 
tional  efficiency;  &  (iii)  analyzing 
&  dsgng  dbases  w/in  an  appln 
area,  either  individually  or  as 
part  of  a  dbase  dvlpmnt  team. 
Master's  degree  in  Comp.  Sci., 
CIS  or  Electronics  Engnrg  (or 
equiv.  of  a  Bach,  degree  in  the 
same  fields  +  5  yrs  of  progres¬ 
sively  responsible  exp.  in  the 
position  offered  or  as  a  Prog. 
Analyst  or  Software  Consultant) 
+  1  yr  of  exp.  in  position  offered 
or  as  a  Prog.  Analyst  or  Soft¬ 
ware  Consultant  reqd.  Must 
have;  (1)  exp.  dsgng  Windows  & 
web-based  appins  using  ASP, 
Visual  Basic,  COM  &  SQL  Ser¬ 
ver;  (2)  exp.  w/PDM,  AutoCAD, 
ErWin,  Salsa,  MS  Access  & 
Select  Enterprise;  &  (3)  high 
mobility  preferred.  40  hrs/wk, 
8am  -  5pm,  $66,730/yr.  Submit 
resume  to:  CareerLink  West¬ 
moreland,  Attn:  CL  Program 
Supervisor,  300  East  Hillis 
Street,  Youngwood,  PA  15697- 
1808.  Refer  to  Job  Order  No. 
WEB  472275. 


Senior  Software  Engineer  - 
Research  dsgn  &  lead  dev.  of 
comp,  s/w  dev.  envirn.  for  Co's 
J2EE  apps.  s/w  using  Oracle. 
Anlz.  s/w  reqs.  to  determine 
teas.,  best  practices,  sys.  arch. 
&  set  Java  s/w  dev.  stds.  Dsgn. 
classes  &  dev.  models.  Estb  & 
lead  coding  &  s/w  dev.  methods, 
use  of  tools,  perf.  meas.,  report¬ 
ing  prac.  &  code  revs.  Coach  & 
train  jr.  s/w  developers.  Advise 
appropriate  Java  integrated  s/w 
dev.  envirn.  (IDE).  Estb.  Best 
practices  for  source  code  con¬ 
trol.  Set  appropriate  rdbms  perf. 
stds.  Dev.  &  set  Apache/Tomcat 
web  server  perf.  stds.  Dev.  best 
practices  for  web  apps.  deploy¬ 
ment.  Lead  sys.  testing,  process 
improvement,  maint.  &  prob. 
resolution.  40  hrs.  wk  8am-5pm 
pay  is  $90,000  per  yr.  Miami, 
Springs,  FL.  Requires  Bach,  in 
Comp.  Sci.,  Inf.  Sys.,  or  Comp. 
Egr.  (any  field)  or  equiv.  +  5  yrs. 
exp.  in  dsgn,  dev.  &  impl.  of  s/w 
using  Oracle,  incl.  1  yr.  of  exp. 
using  Java  related  tech.  Send 
resume  to  Job  #2568068,  Agen¬ 
cy  for  Workforce  Innovation, 
P.O.  Box  10869,  Tallahassee,  FL 
32302. 


Seeking  qualified  applicants  for 
the  following  positions  in 
Orlando,  FL:  Senior  Program¬ 
mer  Analyst.  Formulate/define 
functional  requirements  and 
documentation  based  on 
accepted  user  criteria.  Require¬ 
ments:  Bachelor's  degree  or 
equivalent”  in  computer  science, 
engineering,  MIS  or  related  field 
plus  5  years  of  experience  in 
systems/applications  develop¬ 
ment.  Experience  with  C++, 
Unix  and  transportation  revenue 
processing  systems  also  re¬ 
quired.  ‘Master's  degree  in 
appropriate  field  will  offset  2 
years  of  general  experience. 
Submit  resumes  to  LaWanda 
Thompson,  FedEx  Corporate 
Services,  1900  Summit  Tower 
Blvd.,  Suite  1400,  Orlando,  FL 
32810.  EOE  M/F/D/V. 


Computer  Systems  Analysts/ 
Software  Engs,  needed.  Seek¬ 
ing  qual.  candidates  with  MS 
or  equiv.  &/ or  rel.  work  exp. 
Duties  include:  software  de¬ 
sign,  modification  &  testing, 
working  w/Winrunner  (Merc¬ 
ury  Products),  Power  MFIS, 
AS400/Mainframe  &  DB2. 
Fwd.  resume  &  ref.  &  sal.  req. 
to  Maxroute  Professional  Ser¬ 
vices,  Inc.,  28  Gifford  Road, 
Somerset,  NJ  08873. 


Technical  Consultant:  Write 
code,  program  and  test 
Client/Server  Oracle  and  ecom- 
merce  application  using  Test 
Directory,  Win  Runner,  Load 
Runner,  and  RationalSuite. 
Perform  Requirement  analysis. 
Design  and  write  test  scripts, 
test  cases  and  test  plans  and 
Perform  unit,  system,  functional, 
integration,  regression  and 
whitebox  testing.  QA  testing. 
Must  have  extensive  knowledge 
of  C,  C++,  Unix  Shell  scripting 
and  Perl.  Must  have  good 
knowledge  of  oracle  database, 
PL/SQL  and  sql  quiries.  Must 
have  good  knowledge  of 
Internet  based  tools  like 
Java/J2EE,  Java  Swing, 
Javascript,  HTML,  JSP,  ASP  etc. 
Willing  to  relocate  anywhere  in 
the  US  for  Zenith's  clients.  B.S  in 
Comp  Science  or  other  quanta- 
tive  field  and  2  years  experience 
in  Software  Development. 
40hrs/wk  (9:00  a.m.  to  5:00  pm) 
$80,878.00/yr.  40hrs/wk  (9:00 
a.m.  to  5:00  pm)  $80,878.00/yr. 
Please  send  two  (2)  copies  of 
resume/letters  to  Job  Order 
#2004-1387.  P.O.  Box  989, 
Concord,  NH  03302-0989 


Technical  Consultant:  Analyze, 
design  and  develop  client/serv¬ 
er  application  using  Visual  Basic 
5/6  with  Access/Oracle/SQL 
Server,  VBA  (Excel  &  Outlook) 
and  Crystal  reports.  Develop 
multi  tier  web  based  systems 
with  ASP,  XHTML,  DHTML, 
JavaScript,  VBScript,  COM, 
DCOM,  C++,  XML,  XSLT,  IIS, 
MTS,  Visual  Studio  6,  Oracle/ 
SQLServer  programming,  .NET, 
C#,  Java,  Servlets,  JSP  and 
WebLogic.  Must  have  knowl¬ 
edge  of  Multi-tier  web  based 
systems.  Must  have  knowledge 
of  ASP,  COM,  DCOM,  XML, 
Java  and  WebLogic.  Willing  to 
relocate  anywhere  in  the  US  for 
Zenith's  clients..  B.S  in  Comp 
Science/Engin  or  Quantative 
Field  and  2  years  experience  in 
Software  Development.  40hrs/ 
wk  (9:00  a.m.  to  5:00  pm) 
$80,878.00/yr.Please  send  two 
(2)  copies  of  resume/letters  to 
Job  Order  #2005-049.  P.O.  Box 
989,  Concord,  NH  03302-0989 


Sr.  Software  Engineer  wanted  to 
mng.  software  dvlpmt.  projs.  for 
n-tier,  web-based  CRM  apps.  for 
use  by  the  invest,  mngmt.  & 
energy  indust.  Must  have  B.S. 
deg.  in  Comp.  Sc.,  Eng.  or  relat¬ 
ed  field  &  min.  3  yrs.  exper. 
developing  n-tier,  web-based 
apps.  using  Microsoft.NET 
framework  (including  ASP.NET, 
Visual  C#.NET  &  Visual 
Basic.NET),  XML  &  Web 
Services,  COM/ActiveX  compo¬ 
nents,  incl.  COM+  &  SQL  pro¬ 
gramming  +  object-oriented 
analysis,  design  &  programming 
exper.,  incl.  UML,  &  exper. 
developing  &  integrating  CRM 
apps.  &  developing  commercial 
apps.  Send  resume  to  Steven 
Nothern,  CFO,  Satuit  Techn¬ 
ologies,  Inc.,  80  Washington  St., 
Unit  M-50,  Norwell,  MA  02061. 


Computers:  SAP  FICO  Func¬ 
tional  Consultants  needed. 
Seeking  qual.  candidates  with 
MS  or  eqiv.  &/or  rel.  work  exp. 
Part  of  req.  rel.  work  exp. 
must  include  3  yrs  working  w / 
SAP  FICO.  Duties  include: 
map  business  reqs.  &  design 
IT  solutions  to  meet  business 
reqs.  &  configure  finance  & 
accounting  modules  w/in  SAP 
functions.  Fwd.  resume  &  ref. 
to  USM  Business  Systems, 
Inc.,  Attn:  HR,  574  Mammoth 
Rd,  B6,  Suite  12,  London¬ 
derry,  NH  03053. 


COMPUTER  PROFESSION¬ 
ALS:  Radiant  Systems,  Inc.  a 
Nationwide  Technology  provider 
located  in  NJ,  CT,  TX  &  FL  req 
Professionals  w /  Hardware  &/or 
Software  skills  Incl:  C,  C++, 
Java,  JavaScript,  XML,  UML, 
Perl,  HTML,  SQL,Pro*C,  VB,PB, 
VC++,  MFC,  SDK,  Gupta-SQL, 
Informix,  Crystal  Reports, 
Sybase,  Dev  2000,  Lotus  Notes, 
Unix,  Win  NT/95/XP,  RTOS,  Sun 
OS,  Help  Desk/PC-Support, 
SAP,  R/2-R/3,  ABAP/4,  SAP 
Scripts,  PeopleSoft,  IDMS, 
AS/400,  COBOL/CICS/DB2, 
MVS,  RPG/400,  SQA,  Win/Load 
Runner,  SNMP,  COBRA,  ASP, 
Active-X,  DTM/TDMA,  FDMA, 
Routers,  DSP/ATM,  FRAME 
RELAY,  TCP/IP,  ISDN,  DCOM, 
COM,  PL/1,  SAS,  Vx-Works, 
VHDL,  SONET/SDH,  SNMP,  HP 
OpenView,  Proj  Mgr,  Tech 
Writers  Candidates  w/a  BS  (or 
equiv)  &  2  yrs  exp.  as  P/A 
and/or  MS  (or  equiv)  &  1  yr  exp. 
as  S/E.  Travel  &  reloc.,  req.  to 
anywhere  in  USA  as  assigned. 
Excel.  Benefits.  E-Mail:  radi- 
ants@radiants.com  Attn:  H.R. 
Dept.  109-A  Corporate  Blvd.,  S. 
Plainfield,  NJ  07080 


COMPUTER 

PricewaterhouseCoopers  LLP’s 
Advisory  practice  has  opportuni¬ 
ties  available  for  experienced 
professionals  in  the  area  of  Sec¬ 
urity  Integration  and  Identity 
Management.  Positions  require 
a  bachelor’s  degree  (master’s 
preferred)  in  CS,  CE  or  MIS  and 
1  to  5  yrs  of  related  exp.  Must 
have  hands-on-technical  experi¬ 
ence  with  Directory  and  Meta¬ 
directory  technologies.  Access 
Management,  User  Manage¬ 
ment,  Critical  Path,  Netegrity, 
Oblix,  Microsoft,  and  Sun. 
Knowledge  and/or  experience 
with  programming  languages 
such  as  Perl,  Visual  Basic,  Java, 
and  Web  Services  Technology. 
Will  be  required  to  travel.  Job 
site/location:  Chicago,  IL.  Inter¬ 
ested  candidates  please  refer¬ 
ence  job  code  5DPT9A  &  fax 
resume  to  GL  at  813-329-3919. 
No  phone  calls  please.  Employ¬ 
er  will  only  consider  applicants 
authorized  to  work  for  any  em¬ 
ployer  in  the  U.S. 


Senior  Oracle  Database 

Ad-ministrator:  Systems 
Adminis-tration;  Database 
management  of  enterprise 
wide  Oracle  Syst-ems; 
Extensive  experience  han¬ 
dling  large  volume  databas¬ 
es,  system  &  database  tun¬ 
ing  &  working  with  RS  6000, 
J40/J50,  AIX,  SCO,  Sun 
Solaris,  Win-dows  NT  &  Unix 
is  required.  BS  in  Computer 
Science  or  equiv.  Edu.  & 
exp;  3  yrs  exp  in  job  offered; 
Job  located  in  Fort 
Lauderdale,  FL;  $75,000.00 
yr;  9:00am  -  6:00pm;  40  hrs 
per  wk.  Send  resume  to 
Agency  of  Workforce 
Innovation,  P.O.  Box  10869, 
Tallahassee,  FL  32302,  Job 
Order  #FL-2578948. 


CAD/CAM  Software  Developer 

To  research  new  CAD/CAM 
technologies  and  develop  new 
features  for  the  BobCAD-CAM 
software,  CNC  machine  tool 
path  generation  algorithm  devel¬ 
opment  and  implementation, 
and  conduct  programming  work. 
Req.  MS  or  above  or  foreign 
equiv.  in  Comp.  Sci.,  Manufac¬ 
turing  or  Mechanical  Engineer¬ 
ing,  or  related  field,  proficiency 
in  using  C++,  MFC,  OpenGL 
and  3D  geometry  modeling  and 
familiar  with  advanced  manufac¬ 
turing  technologies  and  CNC 
machine.  40  hrs/wk.  Send 
resume  to  Lori  Pendleton, 
BobCAD-CAM,  Inc.  417  Plaza 
Drive,  Dunedin,  FL  34698.  Fax: 
(727)442-1773. 


Firmware  Engineer 

To  develop  and  test  firmware 
for  SmartSynch's  current  and 
future  SmartMeters  using  Cl 
C++  and  assembly  languages 
in  Real-Time  Operating  System 
(RTOS)  environment.  Req. 
M.S.  in-  EE,  CPE  or  equivalent, 
1  -yr  industrial  exp.  in  develop¬ 
ment/testing  of  telecomm  soft¬ 
ware  in  RTOS  environment, 
proficiency  in  using  C/C++  and 
assembly  languages  and  ability 
to  debug  firmware  issues. 
40hrs/wk.  Send  resume  to  Mr. 
Daniel  L.  Finan,  SmartSynch 
Inc.  4400  Old  Canton  Rd. 
#  300,  Jackson,  MS  39211  or 
dfinan@smartsynch.com. 


Software  Engineer  with 
experience  in  designing 
and  developing  computer 
software  systems  for  supply 
chain  planning  to  work  in 
our  Burlington,  MA  plant. 
Send  resume  to  Jay  R. 
Smith  Mfg.  Co.,  2781 
Gunter  Park  Drive  East, 
P.O.  Box  3237,  Mont¬ 
gomery,  AL  36109,  Attn: 
HR.  Must  reference  job 
code  #111.  EOE. 


Technical  Recruiters  needed. 
Seeking  candidates  possess¬ 
ing  BS  or  equiv  and  relevant 
work  exp.  Part  of  rel  work  exp 
must  include  2  yrs  working  w / 
ASP,  Oracle  &  VB.  Duties 
include:  Analyze  prospective 
employers/employees  to  de¬ 
termine  employment/busi¬ 
ness  needs,  Assess  cands 
ability  to  use  technical  pro¬ 
grams/software.  Mail  resume 
&  refs  to:  Management 
Recruiters  of  Woodbridge, 
Inc.,  One  Woodbridge  Center, 
#700,  Woodbridge,  NJ  07095. 


ISTS  Worldwide,  a  global 
IT/Consulting  solutions  co. 
seeks  Software  Engrs,  Prgmrs, 
QA  Engrs,  DBA's  &  Business 
Analysts  &  Database  Dsgn 
Analysts.  BS  in  Comp.  Sci  or 
related  field  w/3  yrs  exp.  Envrmt: 
C,  C++,  C#,  Java,  J2EE,  EJB, 
Interwoven  Teamsite,  .Net,  VB 
ASP,  Weblogic,  Websphere, 
Apache,  Perl,  UNIX,  Linux,  QA, 
WinRunner,  Loadrunner  Wind¬ 
ows,  Oracle,  Sybase,  MySql, 
DB2  &  SQL  Server.  Resume  to 
HR  Dept,  38930  Blacow  Rd, 
Ste.  E,  Fremont,  CA  94536. 


IP.com,  Inc.  is  seeking  a 
Computer  Programmer 
Coordinator  experienced 
within  the  Intellectual 
Property  field  using  VB 
6.0  and  Java,  MS  Office 
&  Acrobat  Object  Libra¬ 
ries,  DB2,  XML  &  XSL. 
Interested  degreed,  ex¬ 
perienced  professionals, 
please  respond  to: 
Human  Resources,  150 
Lucius  Gordon  Dr.,  W. 
Henrietta,  NY  14586. 


Director  SAP  Consulting  Tech¬ 
nology,  Tampa,  FL  Directs 
tech,  consulting  expansion  of 
Glotels  SAP  practice  in  ser¬ 
vice  sector  worldwide.  Re¬ 
quirements:  BS  Computer  Sci / 
equiv.,  8  yrs  SAP  tech,  experi¬ 
ence,  5  yrs  SAP  formal  certifi¬ 
cation,  6  yrs  global  full  life 
cycle  implementations,  experi¬ 
ence  in  at  least  1  multi  country 
implementation,  proven  global 
recognition  w/i  SAP  arena. 
Glotel,  Inc,  400  Madison  Ave, 
Ste.  5D,  NY,  NY  10017,  Attn: 
D.  Brink. 


Senior  Software  Developer 
sought  by  Fairfax,  VA  based 
software  development  company. 
Must  possess  Masters  degree 
or  the  foreign  equivalent  in 
Computer  Science  or  Infor¬ 
mation  Systems  or  the  equiva¬ 
lent  related  professional  experi¬ 
ence.  Must  also  possess  at  least 
one  (1)  year  of  experience  in 
systems  analysis  and  software 
development  and  design,  specif¬ 
ically  creation  of  n-tier  applica¬ 
tions  using  Microsoft  tools. 
Respond  to:  Megan  Morgan, 
Advanced  Solutions  Inter¬ 
national  Inc.,  4035  Ridge  Top 
Road,  Suite  400,  Fairfax,  VA 
22030. 


Systems  Engineer/Java  De¬ 
veloper:  Provide  Yantra  OMS 
and  WMS  application,  installa¬ 
tion  and  development  skills  in 
support  of  business  objectives. 
Develop  and  dnsure  compliance 
with  coding  standards.  Provide 
support  for  QA  process.  Partici¬ 
pate  in  design  and  technical 
meetings.  EOE. 

Requirements:  Bachelor  degree 
iri  Engineering  and  five  years  of 
experience  using  Yantra. 

Please  send  to:  Stonepath 
Group,  1600  Market  Street, 
Suite  #1515,  Philadelphia,  PA 
19103. 


Infomerica  is  looking  for  system 
analysts,  DBA,  software  engi¬ 
neers  &  computer  consultants 
working  at  different  sites  (travel 
maybe  required).  Require  min. 
BS/MS  with  IT  exp.  Good  salary 
with  full  benefits.  We  sponsor 
H1B  &  Green  Card.  Send  resu¬ 
mes  to  info@infomericainc.com 
EOE. 

Data  Warehouse  Specialists, 
Inc.  is  looking  IT  professionals. 
Duties  include:  design  applica¬ 
tions  for  Business  intelligence, 
On-Line  Analytical  Processing 
(OLAP)  &  Datawarehousing  us¬ 
ing  various  tools.  Competitive 
wage  with  full  benefits.  Please 
send  resumes  to  info@dw 
specialsts.com.  EOE. 


Software  Engineer:  Several  Sr. 
and  Mid  Level  positions  avail¬ 
able  for  qualified  candidates 
possessing  MS/BS  or  equivalent 
in  Comp  Sci  or  in  Engineering 
field  &  relevant  work  experience 
in  Java,  Oracle  9i,WebMethods 
IS  4. 6/6. 0.1,  Trading  Networks.J 
DBC  Adapter,  EDI,  with 
Windows,  Unix  and/or  plat¬ 
forms.  Jobs  are  in  PORTLAND, 
ME.  Please  send  the  resume  to 
ravi@uspcorp.com  or  fax  to 
800-753-1717. 
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our  permission-based  email  service,  which  can  access  over  50  million 
candidates  via  the  Yahoo!  network.  That’s  over  1/3  of  the  U.S.  labor  force! 

Find  out  how  Yahoo!  HotJobs  can  help  you  find  the  right  one  for  your  job. 

Call  1.877. HOTJOBS  today  or  visit  us  at  www.hotjobs.com 
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Sr.  Software  Developer:  Res¬ 
ponsible  for  analyzing,  develop¬ 
ing.  testing  &  debugging  server- 
based  application  solutions.  Will 
perform  the  following  job  duties: 
(1)  work  w/design  team  mem¬ 
bers  &  project  managers  to 
understand  client  business 
specifications:  (2)  create  techni¬ 
cal  specifications  based  on  busi¬ 
ness  needs  &  the  targeted  appli¬ 
cation  components:  (3)  assist  in 
creating  component  architecture 
&  design;  (4)  analyze  technical 
specifications  for  the  purpose  of 
coding  &  unit  testing;  (5)  identify 
design  S  performance  issues; 
(6)  design,  develop,  test  & 
debug  application  components 
&  objects  that  are  developed  in 
either  PowerBuilder,  SQL, 
Sybase  stored  procedures, 
Sybase  Triggers,  Sy-Perl  or 
Unix  Shell  Script;  (7)  code  appli¬ 
cation  events,  cases,  &  steps 
using  application  specific  setup 
tools  and  utilities;  (8)  develop 
unit  test  scripts  &  test  data;  (9) 
conduct  unit  test  application  & 
component  modifications;  (10) 
participate  in  object  &  code 
walkthroughs;  (11)  assist  in 
guiding  &  mentoring  peers;  & 
(12)  assist  in  identifying  a  deter¬ 
mining  improved  departmental 
standards  &  procedures.  Min 
reqts:  Associate  degree  or  for¬ 
eign  equvt  in  any  field  plus  10 
yrs  exp  in  job  offered  position  or 
10  yrs  exp  in  closely  related  IT 
position  w/software  and/or  sys¬ 
tem  development  a  DBA  in 
Sybase.  Must  have  3  yrs  con¬ 
current  exp  with:  PERLa  Unix 
shell  script;  DBArtisan;  Power¬ 
Builder  GUI;  and  Intersolv 
Version  Control.  Job  Site: 
Jacksonville,  FL.  Salary: 
$68, 000/year.  Hours:  Monday 
through  Friday,  9-5,  40  hours  a 
week.  To  apply  send  2  copies  of 
resume  to:  Job  Order  #  FL- 
2574467,  Workforce  Program 
Support,  P.O.  Box  10869, 
Tallahassee,  FL  32302-0869. 


Assistant  DBA/Report  Writer: 

Installation  and  maintenance  of 
databases  (Oracle  for  OLTP/ 
DSS)  on  UNIX/LINUX  systems. 
Provide  Oracle  DBA/Reporting 
support  for  an  n-tier  Java  based 
application  set  as  part  of  appli¬ 
cation  team.  Work  with  software 
development,  hardware/network 
administrators  and  other  IT  staff. 
EOE.  Requirements:  Bachelor 
degree  in  Engineering  or  related 
field  and  six  years  of  experience 
working  as  a  DBA/Developer. 

Database  Architect:  Manage, 
maintain,  administer  and  provide 
Oracle  DBA  support  for  an  n-tier 
Java  based  application  set  as 
part  of  the  IT  application  team. 
Work  with  software  develop¬ 
ment,  hardware/network  admin¬ 
istrators,  and  other  IT  staff  to 
support  deployment  and  mainte¬ 
nance  of  UNIX  systems,  data¬ 
base  maintenance,  data  loading, 
and  administer  system  users. 
EOE.  Requirements:  Bachelor 
degree  in  Computer  Science  or 
related  field,  eight  years  of  expe¬ 
rience  as  a  Database  Profes¬ 
sional,  experience  with  Oracle 
9i/10G,  Oracle  Designer,  and 
experience  with  data  warehous¬ 
ing. 

Please  send  to:  Stonepath 
Group,  1600  Market  Street, 
Suite  #1515,  Philadelphia,  PA 
19103. 


Multiple  openings  for  IT  profes¬ 
sionals  by  Z3  Technologies  to 
design  and  customize  applica¬ 
tions  using  Oracle,  Sybase, 
SQL,  C/C++,  Visual  C++,  OOD, 
Java,  Web  Tech,  SAP,  VB. 
Travel  may  be  required. 
Candidates  must  have  BS/MS 
with  exp.  Please  contact 
info@z3technoloaies.com.  EOE. 

OTS  (Object  Technology  Solu¬ 
tions)  has  multiple  openings  for 
IT  professionals  (software  engi¬ 
neers,  system/program  ana¬ 
lysts,  DBA,  etc)  to  design  and 
develop  applications  using  vari¬ 
ous  skills  such  as  VB,  Oracle, 
Java,  WebSphere,  SQL,  SAP. 
Req  MS/BS  with  exp.  Contact 
resumes@otsi-usa.com.  EOE. 


Software  Engineer/ 
Programmer  Analyst/ 
Systems  Analyst/ 
Database  Administrator/ 
Quality  Analysts 
(Multiple  Openings) 

Must  have  bachelors  degree  or 
equivalent  and  experience  in 
some  of  the  following  skills:  ERP 
(SAP,  JD  Edwards,  PeopleSoft, 
Oracle  Apps,  Baan),  CRM 
(Seibel,  Clarify,  Vantive),  C/C++, 
C#,  Java,  J2EE,  J2SE,  XML, 
UML,  Microsoft  Technologies 
(Visual  Basic,  .Net,  ASP),  Data 
Warehousing  Tools  (Informatica, 
Data  Stage,  Abinitio,  Business 
Objects,  Cognos,  Micro  Stra¬ 
tegy,  Brio,  SAS),  Document 
Management  Tools  like  Docum- 
entum.  Mainframe  (Cobol, 
CICS,  JCL,  VSAM)  AS400, 
Databases  (SQL  Server  /Oracle 
/DB2  /  Sybase),  Enterprise 
Security/SSO  using  products 
like  Netegrity,  Siteminder, 
Identityminder,  Waveset  and 
Lighthouse;  QA  (Win  Runner, 
Load  Runner,  Rational  Products 
&  Silk)  in  Windows  (95/98/ 
2000/NT/XP)  and/or  UNIX  (Sun 
Solaris/HP/AlX)  and/or  Linux 
operating  systems.  Must  be  able 
to  travel  or  relocate  nationwide. 
Attractive  compensation  pack¬ 
age. 

Mail  your  resume  to: 
gayathri@isrinfo.com 
Or 

Human  Resources  Director 
ISR  INFO  WAY  INC 
559  D'Onofrio  Drive, 
Suite#  101 
Madison,  Wl  -53719 
Only  email/mailed  resumes 
accepted  (No  Walk  Ins) 


Software  Engineer  sought  by 
laser  cutting/marking  machine 
manufacturer  in  Golden,  CO  to 
work  in  Golden.  Design,  develop 
and  maintain  embedded  real¬ 
time  system  for  laser  engraving 
and  cutting  machines  by  using 
Object-Oriented  designing  tech¬ 
nology  and  C++.  Develop  and 
maintain  printing  device  drivers 
for  16  bit  and  32  bit  Windows 
operating  system  using  C  and 
computer  graphic  technologies. 
Debug,  maintain  and  enhance 
Epilog  legacy  software.  Manage 
source  code  of  all  Epilog  soft¬ 
ware.  Provide  technical  support 
for  Customer  Service  Dept. 
Requires  B.S  or  B.Eng.  in  engi¬ 
neering  or  computer  science; 
working  knowledge  of  C/C++ 
programming  Object-oriented 
development  and  development 
of  embedded  real-time  systems. 
(Working  knowledge  may  be 
gained  in  an  academic  or 
employment  setting.)  M-F;  8am- 
5pm;  $55,000/yr.  Respond  by 
resume  to  Employment  Prog¬ 
rams,  PO  Box  46547,  Denver, 
CO  80202  and  respond  to  JON 
C05092502. 


Bioinformatics  Programmer 
wanted  to  oversee  all  aspects  of 
comp,  network  functions  in 
Center  for  Cancer  Systems 
Biology  (CCSB),  incl.  admin,  of 
multi-platform  network  &  mgmt. 
of  IT  infrastructure  &  oper.  syst. 
for  all  databases.  Will  also 
supervise  bioinform,  analysts, 
create  &  implement  bioinform, 
tools  for  analysis  of  functional 
genomics  &  proteomics,  &  dvlp. 
web-based  methods  for  access¬ 
ing  biological  datasets.  Must 
have  MS  deg.  in  Bioinform,  or 
Comp.  Sc.  &  2  yrs.  Bioinform, 
dvlpmt.  exper.,  incl.  exper.  work¬ 
ing  on  multiple  platforms 
(Unix/Linux,  PC,  Mac),  &  exper. 
in  genomic  or  proteomic  data 
analysis  using  AceDB,  MYSQL 
+/or  Oracle,  Perl,  C++  &  Java. 
Send  resume  to  Lorraine  J. 
Barnes,  International  Services, 
Dana  Farber  Cancer  Institute, 
44  Binney  St.,  Boston,  MA 
02115. 


IT  Technical  Lead,  Project  Man¬ 
ager,  Boston,  MA,  Evergreen 
Investments.  Lead  software  dev. 
team  &  manage  the  design, 
implemn.  &  maintenance  of  IT 
projects.  Reqs.  BA  in  Computer 
Science,  Eng.  or  a  rel.  disc.  &  4 
yrs  exp.  in  pos.  offered  or  as  a 
Web  Developer  or  Software 
Eng.  The  4  yrs  reqd.  exp.  must 
incl.  work  w /  eng.,  managing  & 
designing  computer  apps.  using 
tech,  such  as  Java,  Java  Script, 
WebLogic,  Servlets,  HTML/ 
DHTML,  Oracle  PL/SQL,  Win¬ 
dows  &  OOAD  &  dev.  &  IT  pro¬ 
ject  mgmt.  w/  a  WebLogic  serv¬ 
er  in  a  Windows  or  Solaris  OS.  3 
yrs  of  reqd  exp.  must  incl.  work 
w /  XML  and  XSL.  M-F,  40hrs/wk, 
Send  resume  and  cvr  Itr.  to  Geri 
Henderson,  Wachovia  Corp., 
401  S.  Tryon  Street,  15th  Floor, 
Charlotte,  NC  28288.  No  phone 
calls. 


Project  Director  in  Mesa,  AZ  to 
direct  &  id.  manageable  onsite/ 
offshore  elearning  &  applica¬ 
tions  development  projects. 
Must  have  MS  deg.,  or  foreign 
equiv.,  in  Eng.,  Comp.  Sc.  or  rel. 
field  &  3  yrs.  proj.  eng.  exper., 
incl.  proj.  design,  implementa¬ 
tion,  planning,  reqts.  analysis  & 
execution,  2  yrs.  exper.  in  soft¬ 
ware  proj.  eng.  for  comp,  or  web 
-based  training  &  proj.  mgmt. 
exper.  Bach,  deg.,  or  foreign 
equiv.,  in  Eng.,  Comp.  Sc.  or  rel. 
field  &  5  yrs.  progressive  proj. 
eng.  exper.,  incl.  proj.  design, 
implementation,  planning,  reqts. 
analysis  &  execution,  plus  2  yrs. 
exper.  software  proj.  eng.  for 
comp,  or  web-based  training  &  1 
yr.  proj.  mgmt.  exper.  can  subst. 
for  MS  deg.  &  required  exper. 
Send  resume  to  Hilary  Gosselin, 
HR  Manager,  Lionbridge  Tech¬ 
nologies,  Inc.,  492  Old  Connec¬ 
ticut  Path,  Framingham,  MA 
01701. 


Product  Engineer  sou¬ 
ght  by  IT  Mgmt  & 
Consulting  Co.  for  dsgn 
&  applic  of  VoIP  applies 
&  web  based  solutions. 
Exp  reqd.  Bach  or  for¬ 
eign  equiv  reqd.  Comp 
sal.  Resume  to 
Corpotel,  Inc.,  13798 
NW  4th  St.,  Ste  306, 
Sunrise,  FL  33325  or  fax 
(954)949-0503 


System  Administrator:  Several 
Sr.  level  positions  available  for 
qualified  candidates  with  MS/BS 
degree  in  CS  or  equivalent  and 
8+  years  of  UNIX  experience 
which  must  include  a  minimum 
5  years  of  Solaris  OS  and  Sun 
hardware  experience  along  with 
Shell,  Perl,  Java  Enterprise 
System  Directory,  Messaging, 
Calendar,  Web  &  Identity 
Management  Suite.  Sun  ONE 
Directory  Server  certification  is 
preferable.  Job  in  Portland,  ME 


Database  Administrator.  Or¬ 
acle  DBA,  development  & 
production  database  support, 
etc.  Design  database  configu¬ 
ration,  triggers  stored  proce¬ 
dures,  data  mappings  & 
scripts  for  legacy  data  con¬ 
version.  Req  M.S.  in  Math  or 
Related  Field  &  2  yrs  exp  in 
job  or  2  yrs  exp  as  a  Sr. 
Database  Admin.  Send  Re¬ 
sume:  Garner  Bennett,  Total 
Resources  Management, 
Inc.,  2820  Camino  Del  RioS., 
Ste.  210,  San  Diego,  CA 
92108  (jobsite). 


Cooper  Lighting  seeks  appli¬ 
cants  for  the  position  of  MIS 
Assistant  in  Denver,  CO  to 
engage  in  moderately  complex 
tasks  regarding  computer  and 
network  maintenance  as  well  as 
participating  in  the  design, 
development,  enhancement  and 
modification  of  custom  software 
applications.  Requires  bache¬ 
lor's  in  computer  science,  infor¬ 
mation  technology  or  related 
field  and  working  knowledge  of 
computer  and  network  mainte¬ 
nance,  designing  and  develop¬ 
ing  custom  software  applica¬ 
tions,  SQL-based  Relational 
Database  Management  Syst¬ 
ems  and  MS/Access,  and 
Statistical  analysis  software  to 
analyze  data.  Respond  by 
resume  to  Katrina  Moore, 
Cooper  Lighting,  4675  A  Holly 
St.,  Denver,  CO  80216.  EOE. 


Thomson,  Inc.  is  seeking  a 
Member  of  Technical  Staff 
(Computer  Software  Engineer) 
for  their  Princeton,  NJ  facility  to 
research  and  design  the  sched¬ 
uled  delivery  of  multimedia  con¬ 
tent  over  a  hybrid  digital  net¬ 
work;  conduct  independent  re¬ 
search  and  development  to  en¬ 
able  multimedia  content  delivery 
over  evolving  3G  networks;  and 
apply  knowledge  of  IPv4,  IPv6 
and  QOS  software  programs 
and  ATM  protocols  towards  sys¬ 
tem  design.  Must  have  a  Bach¬ 
elor's  degree  or  foreign  equiva¬ 
lent  in  Electrical  Engineering  or 
a  related  field,  plus  3  years  of 
experience  in  the  job  offered  or 
3  years  of  experience  as  a 
Software  Engineer.  Salary  com¬ 
mensurate  with  experience. 
Please  send  cover  letter  and 
resume  to:  Thomson  Inc.,  Attn: 
HR  Recruiting,  Job  #  9000, 
10330  N.  Meridian  St., 
Indianapolis,  IN  46290. 


Program  Manager  for  IT 
outsourcing  projects.  Pos¬ 
ition  requires  solid  back¬ 
ground  in  IT  project  man¬ 
agement.  Send  resume  to 
SAIC,  10003  Woodloch 
Forest  Dr.,  Ste.  800,  The 
Woodlands,  TX  77380, 
Attn:  HR.  Must  reference 
job  code  #112  EOE. 


Sr.  Systems  Engineer  wanted  by 
legal  services  info  co.  in  NYC  to 
analyze,  develop,  implement 
system  solutions  using  People- 
Soft  EnterpriseOne  Xe  (former 
JDE  OneWorld),  PeopleSoft 
XPIe,  Optio  eComlntegrate, 
OptioFAX,  Crystal  Enterprise, 
Oracle  Enterprise  8i  DB,  MS 
SQL  Server  2000,  IBM  DB2  and 
AIX  UNIX.  Resumes  to  HR 
Dept.,  CT  Corporation  Systems, 
111  8th  Ave,  NY,  NY  10011. 


Systems  Analyst  for  lead 
project  team  position. 
Extensive  configuration 
experience  and  technical 
skills  a  must.  Send 
resume  to  Swagelok, 
6262  Cochran  Rd.,  Solon, 
OH  44139,  Attn:  Len 
Miller.  Must  reference  job 
code  #555.  EOE. 


Programmer  Analyst  w/2  yrs  exp 
to  develop  &  test  enterprise  web 
application  in  three  tier  environ¬ 
ment  on  Unix  &  Windows.  Use 
JSP,  HTML,  XML,  Servlets,  EJB, 
JDBC  &  ODBC.  Develop  stored 
procedures  &  triggers  using 
SQL  &  PL/SQL;  Model  business 
using  Rational  Rose  &  UML. 
Create  test  plans,  test  scripts  & 
set  up  QA  environment  &  per¬ 
form  Unit,  Integration  &  User 
Acceptance  testing.  Perform 
client  side  validation  using 
JavaScript.  Mail  res  to:  Soft  Tech 
Source  -  A  Division  of  Ramesh 
Sarva  CPA,  PC.,  16  Murray 
Guard  Dr.,  Jackson,  TN  38305. 


Matrix  Management  Systems, 
Inc.  is  looking  for:  Programmer 
Analyst:  Should  have  a  bache¬ 
lor's  degree  in  computer  science 
/related  field  with  3+  years  of  ex¬ 
perience  in  the  following:  Star- 
Team,  Documentum,  .Net  Arch¬ 
itect,  VB.NET,  ASP.NET,  C#  Ar¬ 
chitect,  VB6.0,  ASP,  XML,  XSL, 
VB  Script,  SQL  SERVER  7.0/ 
2000,  Oracle,  Cold  Fusion, 
Clear  Quest,  C,  C++,  VC++, 
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Betting  on  virtualization 

s 


am  not  a  betting  man  (I  paid  at¬ 
tention  in  class  when  we  covered 
probability)  but  I  would  bet  that 
virtualization  will  change  everything. 

I  concluded  last  week’s  column 
with  the  prediction  that  virtualization 
would  make  the  server  business 
more  cutthroat  than  it  already  is. 

My  reasoning  was  that  when  hardware  is  isolated 
from  the  operating  systems  to  the  extent  that  it  is 
effectively  generic  and  any  physical  differences  are 
transparent,  server  differentiation  becomes  impossi¬ 
ble  and  branding  irrelevant. 

My  second  thought  about  virtualization  is  poten¬ 
tially  more  disruptive:  A  virtualized  infrastructure 
weakens  Microsoft’s  hegemony 

Note  that  I’m  not  taking  Microsoft’s  foray  into  vir¬ 
tualization,  Microsoft  Virtual  PC,  seriously.  When  I 
talk  about  virtualization  I’m  talking  about  the  likes 
ofVMware.The  biggest  difference  between  Micro¬ 
soft’s  product  and  VMware  is  the  latter’s  support  for 
non-Windows  operating  systems,  notably  the  57 
varieties  of  Linux,  as  well  as  NetWare  and  exotica 
such  as  Oberon,  Inferno  and  BeOS. Virtual  PC,  on 
the  other  hand,  is  really  more  of  a  migration  tool 
for  NT  4  shops. 

In  the  Microsoft  world,  the  intimate  relationship 
with  the  underlying  hardware  makes  the  operating 


system  special  — Windows  is  “welded”  to  the  plat¬ 
form,  and  the  complexity  of  the  resulting  system 
means  you  have  to  be  committed  to  the  installation. 

But  virtualization  changes  everything.  Now  operat¬ 
ing  systems  become  as  mobile  and  malleable  as 
applications  —  in  fact  operating  systems  become,  in 
practice,  even  more  mobile  than  applications,  and 
can  be  duplicated,  relocated  and  reconfigured  with 
amazing  ease. 

So  if  Microsoft  doesn’t  own  the  platform  any  more, 
it  puts  the  company  in  a  weaker  position.  For  exam¬ 
ple,  where  you  need  extra  service  and  don’t  want  to 
spend  more  money  on  Windows,  you  can  run  an 
alternative  operating  system  simply  configured  for 
one  or  two  services.This  really  will  rattle  Microsoft’s 
ongoing  spin-doctoring  about  the  total  cost  of  own¬ 
ership  of  Windows  compared  with  Linux. 

If  you  take  a  Windows  shop  and  tty  to  migrate  to 
Linux  the  cost  will  kill  you,  but  that  isn’t  reality  Real¬ 
ity  is  that  you  would  use  your  existing  investment 
and  over  a  long  period  introduce  Linux  piecemeal. 
With  virtualization,  the  migration  process  becomes 
far  more  manageable  and  therefore  cost-effective. 

1  think  the  whole  cost  campaign  Microsoft  has 
been  running  shows  just  how  profound  a  challenge 
Linux  is  to  the  company  What  it  is  admitting  is  that 
there  is  a  real  pretender  to  the  throne.  Microsoft  is,  in 
effect,  validating  the  competition. 


This  reminds  me  of  many  years  ago  when  Novell 
did  a  “head  to  head”  test  against  Banyan  and  Micro- 
soft.The  problem  was  that  in  most  areas  there  was 
no  clear  winner  and  when  you  added  it  all  up  there 
was  no  overall  winner.  Not  only  was  the  effort  a 
waste  of  time  and  effort,  but  Novell  publicly  admit¬ 
ted  there  was  competition.  Bad  idea. 

So  with  virtualization  Microsoft  loses  an  impor¬ 
tant  advantage.  What  can  it  fight  back  with?  Well, 
how  about  licensing?  Could  Microsoft  start  linking 
licenses  to  physical  processors,  for  example,  allow¬ 
ing  only  one  server  license  to  each  real  processor? 

I’m  quite  sure  that  it  can  create  some  kind  of  argu¬ 
ment  to  make  such  a  restriction  appear  to  be  a  ratio¬ 
nal  response  to  a  technical  issue  —  you  know,  like 
Microsoft’s  argument  that  Windows  Media  Player 
had  to  be  embedded  in  the  core  operating  system 
otherwise  it  would  be  the  end  of  the  world. 

Virtualization  changes  everything.  Not  immediately 
or  even  necessarily  quickly  but  over  the  next  few 
years  virtualization  will  redefine  how  we  run  enter¬ 
prise  infrastructure  and  give  us  a  richer  range  of 
choices  with  which  to  create  solutions. 

Even  though  I’m  not  a  betting  man,  if  someone 
wants  to  challenge  me  on  this  1  might  have  to  take 
the  bet.This  looks  like  a  safe  one. 

Wagers  to  backspin@gibbs.com. 
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News,  insights,  opinions  and  oilties 


By  Paul  McNamara 


A  few  final  points  about  the  election 

Buzz  loves  digging  into  a  good  con¬ 
spiracy  yarn  as  much  as  the  next  guy. 
But  I'm  not  buying  this  “Kerry  really  won”  nonsense  traipsing  about  the  blogos- 
phere  any  more  than  I  do  the  magic  bullet  theory  or  Jack  Ruby  in  the  role  of 
aggrieved  avenger. 

Which  isn't  to  say  there  isn’t  a  lot  that  needs  fixing  in  terms  of  how  we  vote, 
particularly  those  wretched  e-voting  machines  and  the  immutable  need  to  assure 
that  future  elections,  should  they  prove  closer,  can  be  verified  through  a  recount 
that  reasonable  citizens  will  trust  (there  will  always  be  outliers  on  the  fringes). 
That  means  replacing  machines  that  are  incapable  of  producing  a  paper  trail:  no 
ifs,  ands  or  excuses.  Voting  ought  not  require  a  four-hour  wait  in  line,  either,  which 
means  not  only  better  voting  machines  but  also  a  lot  more  of  them. 

Before  the  presidential  election  fades  too  far  into  the  rearview  mirror,  however, 
there  are  a  couple  of  other  Internet-related  items  worth  revisiting:  One  turned 
out  to  be  a  huge  deal,  the  other  not  so  much. 

These  numbers  from  Meetup.com  ought  to  be  Exhibit  A  in  countering  those  who 
still  pooh-pooh  the  Internet's  ability  to  bring  about  meaningful  social  change  in  a 
rapid  manner: 

About  750,000  individuals  registered  for  various  political  Meetup  Groups,  with 
some  450,000  attending  at  least  one  of  25,000  meetings  held  nationwide. 

Kerry  supporters  alone  numbered  almost  132,000  strong  in  653  cities  worldwide, 
and  they  conducted  8,700  events  between  them. 

President  Bush’s  supporters  numbered  fewer  than  5%  of  the  Kerry  total  and 
Bush  events  fewer  than  10%  ...  but  these  folks  held  much  cheerier  post-election 
bashes. 

Myles  Weissleder,  Meetup's  vice  president  of  communications,  sums  it  up 
thusly:  “Twenty-five  thousand  meetings  where  no  meetings  existed  before. 


Community  connections  where  there  were  once  none.  Meetup  Groups  helped 
spur  millions  of  dollars  raised,  tens  of  thousands  of  signatures  signed,  record 
voter  turnouts  and  best  of  all  —  a  newly  empowered  electorate.” 

Some  will  carp  that  all  those  newly  minted  activists  holding  all  those  living- 
room  meetings  didn't  do  Kerry  any  good  where  it  counted. They  are  shortsighted. 

This  is  how  political  campaigns  are  going  to  be  run  from  now  on. 

The  same  cannot  be  said  —  at  least  not  with  any  authority  —  about 
VotePair.org,  a  somewhat  controversial  vote-swapping  site  that  sought  to  boost 
swing-state  support  for  Kerry.The  idea  was  to  convince  swing-state  backers  of 
Green  Party  candidate  David  Cobb  and  independent  Ralph  Nader  to  cast  poten¬ 
tially  meaningful  votes  for  Kerry  in  return  for  their  protest  ballots  being  regis¬ 
tered  in  other  states  that  Kerry  was  assured  of  winning. 

While  anathema  to  purists,  it's  a  practical  idea  for  pragmatic  voters,  and  the 
VotePair  organizers  executed  the  scheme  well.The  effort  ultimately  proved  futile, 
however,  and  not  simply  because  Bush  won  re-election. 

While  22,000  individuals  did  register  their  intention  to  participate  (no  one  really 
knows  what  people  did  in  the  privacy  of  their  voting  booths),  only  2,659  pairs  were 
formed.  And  that  wasn't  anywhere  near  enough  to  affect  the  outcome  in  any  state 
because,  unlike  Florida  in  2000,  none  turned  out  to  be  closely  enough  contested. 
VotePair  delivered  fewer  than  500  Floridians  for  Kerry,  which  mattered  not  a  whit 
in  a  state  that  the  president  carried  by  almost  400,000  votes. 

The  biggest  obstacle  for  VotePair  was  common  sense:  Far  fewer  voters  were 
willing  to  cast  meaningless  protest  votes  this  time  around.  Nader  garnered 
almost  100,000  votes  in  Florida  four  years  ago.  On  Nov.  2  he  received  only  about 
one-third  as  many. 

Results  aside,  the  VotePair  concept  —  using  the  ’Net  to  foster  strategic  voting 
between  residents  of  states  otherwise  disenfranchised  by  Electoral  College 
peculiarities  —  may  well  survive  to  fight  another  day. 

It’s  not  too  late  to  vote  on  these  issues.  The  address  is  buzz@nww.com. 
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DB2  DOESN’T  LOCK  YOU  IN. 


DB2  is  middleware,  but  it  is 
anything  but  middle-of-the-road. 

In  fact,  DB2  is  part  of  an  innovative 
family  of  information  management 
products  that  can  integrate  and 
actually  add  insight  to  your  data. 
That’s  big. 

DB2  is  also  the  leading  database 
built  on  and  optimized  for 
Linux?  UNIX®  and  Windows?  built 
to  take  full  advantage  of  your 
existing  heterogeneous  and  open 
environments,  and  built  to  enable 
true  grid  computing. 


Plus,  there’s  no  constricting  contract. 

DB2  is  also  middleware  with  an  eye  on 
your  resources.  All  of  them.  An  ITG 
study  showed  overall  costs  for  Oracle 
Database  are  up  to  four  times  higher 
than  DB2!  A  Solitaire  study  found  that, 
on  average,  Oracle  Database  required 
25%  more  time  to  manage  than  DB2? 
And  the  Transaction  Processing 
Performance  Council  showed  DB2  as 
the  overall  price/performance  leader  for 
TPC-C  on  Linux,  UNIX  and  Windows. 
Ahead  of  both  Oracle  Database  and 
Microsoft®  SQL  Server? 


Then  there’s  this:  Oracle  will  drop  the 
current  level  of  support  for  Oracle 
Database  8i  at  the  end  of  2004.  Meaning 
limited  support,  higher  cost  or  a 
complete  migration  to  current  versions. 
Fortunately,  IBM  offers  ongoing,  around- 
the-clock  service  and  support  for  DB2. 

Why  not  move  up  to  middleware  that 
makes  sense?  Through  the  end  of  the 
year,  you  can  get  IBM  DB2  Universal 
Database  by  taking  advantage  of 
our  extremely  compelling  trade-up 
promotion.  Visit  ibm.com/db2/swap 
today  to  find  out  if  you  qualify. 
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